I got the reply that the signature relates to a CVE from 2017, in this case CBE-2017-5444 [I guess that is a spelling error meaning CVE-2017-5444]
More precise notes to the signature they do not have. They suspected it has no more relevance, so they deactivated it (after my request). Shall I ask them to give me the rule affected? I am currently in the process of getting information from the other affected persons. ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-5444 -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to firefox in Ubuntu. https://bugs.launchpad.net/bugs/1804486 Title: firefox 63.0 out of bounds read/or wrong firewall rule Status in firefox package in Ubuntu: Incomplete Bug description: On using the application knime the download was intercepted by firewall rules of the university network with the following error: File-Text_Mozilla-Firefox-HTTP-Index-Format-File-Out-Of-Bounds-Read This may be associated by https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5446 Was the mitigation ported/used in firefox 63.0 ? Are security updates for common used programs (firefox 63.3 is current version) not supported on LTS anymore? To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/1804486/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp