Alerts This Week
Warning Icon 1 540
Alerts This Week
Warning Icon 1 540

Mageia: 2018-0483 Moderate: Firefox Buffer Overflow and Use-After-Free

mageia
Calendar Grey December 15, 2018
Dist Mageia Esm H88
Enhanced Chromium packages address vulnerabilities related to memory corruption and race conditions in Debian.
A buffer overflow and out-of-bounds read can occur in TextureStorage11 within the ANGLE graphics library, used for WebGL content

Summary

A buffer overflow and out-of-bounds read can occur in TextureStorage11 within the ANGLE graphics library, used for WebGL content. This results in a potentially exploitable crash (CVE-2018-17466).
A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection. This results in a potentially exploitable crash (CVE-2018-18492).
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit. This results in a potentially exploitable crash (CVE-2018-18493).
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft (CVE-2018-19494).
A potential vulnerability leading to an integer overflow...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=23991

- https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/

- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/

- https://www.cve.org/CVERecord?id=CVE-2018-12405

- https://www.cve.org/CVERecord?id=CVE-2018-17466

- https://www.cve.org/CVERecord?id=CVE-2018-18492

- https://www.cve.org/CVERecord?id=CVE-2018-18493

- https://www.cve.org/CVERecord?id=CVE-2018-18494

- https://www.cve.org/CVERecord?id=CVE-2018-18498

Topics%20covered

Topics Covered

security advisory buffer overflow memory corruption firefox web exploitation use-after-free Mageia

Resolution

SRPMS

- 6/core/firefox-60.4.0-1.mga6

- 6/core/firefox-l10n-60.4.0-1.mga6

Publication date: 15 Dec 2018
URL: https://advisories.mageia.org/MGASA-2018-0483.html
Type: security
CVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498

Topics%20covered

Topics Covered

security advisory buffer overflow memory corruption firefox web exploitation use-after-free Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here