Lucene search
MozillaCVELIST:CVE-2018-12361HistoryOct 18, 2018 - 1:00 p.m.
CVE-2018-12361
2018-10-1813:00:00
mozilla
www.cve.org
7
An integer overflow can occur in the SwizzleData code while calculating buffer sizes. The overflowed value is used for subsequent graphics computations when their inputs are not sanitized which results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, and Firefox < 61.
CNA Affected
[
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "60",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "60.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "61",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
www.securityfocus.com/bid/104558
www.securitytracker.com/id/1041193
bugzilla.mozilla.org/show_bug.cgi?id=1463244
lists.debian.org/debian-lts-announce/2018/11/msg00011.html
security.gentoo.org/glsa/201810-01
security.gentoo.org/glsa/201811-13
usn.ubuntu.com/3705-1/
www.debian.org/security/2018/dsa-4295
www.mozilla.org/security/advisories/mfsa2018-15/
www.mozilla.org/security/advisories/mfsa2018-16/
www.mozilla.org/security/advisories/mfsa2018-19/
Related
nvd
nvd
CVE-2018-12361
2018-10-18 13:29:01
ubuntucve
ubuntucve
CVE-2018-12361
2018-06-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:02:06
debiancve
debiancve
CVE-2018-12361
2018-10-18 13:29:01
redhatcve
redhatcve
CVE-2018-12361
2018-06-27 01:21:37
prion
prion
Integer overflow
2018-10-18 13:29:00
cve
cve
CVE-2018-12361
2018-10-18 13:29:01
nessus
nessus
Debian DSA-4295-1 : thunderbird - security update
2018-09-17 00:00:00
openSUSE Security Update : MozillaThunderbird (openSUSE-2019-664)
2019-03-27 00:00:00
openSUSE Security Update : MozillaThunderbird (openSUSE-2018-994)
2018-09-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4295-1)
2018-09-15 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2018:1833-1)
2018-06-29 00:00:00
openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2018:2658-1)
2018-09-09 00:00:00
archlinux
archlinux
[ASA-201808-8] thunderbird: multiple issues
2018-08-10 00:00:00
[ASA-201806-14] firefox: multiple issues
2018-06-27 00:00:00
debian
debian
[SECURITY] [DSA 4295-1] thunderbird security update
2018-09-16 20:54:24
[SECURITY] [DLA 1575-1] thunderbird security update
2018-11-12 09:30:01
osv
osv
thunderbird - security update
2018-09-16 00:00:00
thunderbird - security update
2018-11-12 00:00:00
MozillaThunderbird-91.1.1-1.1 on GA media
2024-06-15 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2018-09-08 12:10:25
Security update for MozillaFirefox (important)
2018-06-28 15:07:56
Security update for MozillaThunderbird (important)
2018-10-06 18:07:49
kaspersky
kaspersky
KLA11299 Multiple vulnerabilities in Mozilla Thunderbird
2018-08-06 00:00:00
KLA11271 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR
2018-06-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 60.0-alt1
2018-08-13 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 60.1.0-alt1
2018-06-26 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 60 — Mozilla
2018-08-17 00:00:00
Security vulnerabilities fixed in Firefox ESR 60.1 — Mozilla
2018-06-26 00:00:00
Security vulnerabilities fixed in Firefox 61 — Mozilla
2018-06-26 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2018-07-05 00:00:00
Firefox regressions
2018-07-10 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2018-06-26 00:00:00
mageia
mageia
Updated thunderbird packages fix security issues & bugs
2018-12-16 00:29:48
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2018-10-02 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2018-11-24 00:00:00