CVE-2018-5154
CVE-2018-5154
A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8.
Productos afectados
Mozilla · FirefoxMozilla · Firefox ESRMozilla · ThunderbirdMozilla · Thunderbird ESR¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://access.redhat.com/errata/RHSA-2018:1414https://access.redhat.com/errata/RHSA-2018:1415https://access.redhat.com/errata/RHSA-2018:1725https://access.redhat.com/errata/RHSA-2018:1726https://bugzilla.mozilla.org/show_bug.cgi?id=1443092https://lists.debian.org/debian-lts-announce/2018/05/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2018/05/msg00013.htmlhttps://security.gentoo.org/glsa/201810-01https://security.gentoo.org/glsa/201811-13https://usn.ubuntu.com/3645-1/https://usn.ubuntu.com/3660-1/https://www.debian.org/security/2018/dsa-4199