Lucene search

K

MozillaCVELIST:CVE-2018-5144

HistoryJun 11, 2018 - 9:00 p.m.

CVE-2018-5144

2018-06-1121:00:00

mozilla

www.cve.org

3

8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.9%

An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR < 52.7 and Thunderbird < 52.7.

CNA Affected

[
  {
    "product": "Firefox ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.7",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Thunderbird",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.7",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/103384

www.securitytracker.com/id/1040514

access.redhat.com/errata/RHSA-2018:0526

access.redhat.com/errata/RHSA-2018:0527

access.redhat.com/errata/RHSA-2018:0647

access.redhat.com/errata/RHSA-2018:0648

bugzilla.mozilla.org/show_bug.cgi?id=1440926

lists.debian.org/debian-lts-announce/2018/03/msg00010.html

lists.debian.org/debian-lts-announce/2018/03/msg00029.html

security.gentoo.org/glsa/201810-01

security.gentoo.org/glsa/201811-13

usn.ubuntu.com/3545-1/

www.debian.org/security/2018/dsa-4139

www.debian.org/security/2018/dsa-4155

www.mozilla.org/security/advisories/mfsa2018-07/

www.mozilla.org/security/advisories/mfsa2018-09/

8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.9%

Related for CVELIST:CVE-2018-5144

cve1 redhatcve1 nvd1 ubuntucve1 veracode1 debiancve1 prion1 nessus35 oraclelinux4 mageia4 openvas20 ubuntu1 centos4 redhat4 debian4 osv4 archlinux1 mozilla2 altlinux2 kaspersky2 suse1 ibm1 gentoo2