mozilla -- multiple vulnerabilities

2019-01-29T00:00:00
ID B1F7D52F-FC42-48E8-8403-87D4C9D26229
Type freebsd
Reporter FreeBSD
Modified 2019-07-23T00:00:00

Description

Mozilla Foundation reports:

CVE-2018-18500: Use-after-free parsing HTML5 stream CVE-2018-18503: Memory corruption with Audio Buffer CVE-2018-18504: Memory corruption and out-of-bounds read of texture client buffer CVE-2018-18505: Privilege escalation through IPC channel messages CVE-2018-18506: Proxy Auto-Configuration file can define localhost access to be proxied CVE-2018-18502: Memory safety bugs fixed in Firefox 65 CVE-2018-18501: Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5