A use-after-free vulnerability in the Skia library can occur when creating a path, leading to a potentially exploitable crash (CVE-2018-18356). An integer overflow vulnerability in the Skia library can occur after specific transform operations, leading to a potentially exploitable crash (CVE-2019-5785).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 6 | noarch | firefox | < 60.5.1-1 | firefox-60.5.1-1.mga6 |
Mageia | 6 | noarch | firefox-l10n | < 60.5.1-1 | firefox-l10n-60.5.1-1.mga6 |