CVE-2018-5095

2018-06-11T21:29:00
ID CVE-2018-5095
Type cve
Reporter security@mozilla.org
Modified 2020-08-24T17:37:00

Description

An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.