A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.CreditsEmilio Cobos ÁlvarezReferenceshttps://bugzilla.mozilla.org/show_bug.cgi?id=1530709https://www.mozilla.org/security/advisories/mfsa2019-34/
