2018-01-03 16:04:09 -05:00
{
"CVE_data_meta" : {
2018-10-18 08:32:12 -04:00
"ASSIGNER" : "security@mozilla.org" ,
2018-10-18 09:04:32 -04:00
"ID" : "CVE-2018-5188" ,
"STATE" : "PUBLIC"
2018-10-18 08:32:12 -04:00
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Thunderbird" ,
"version" : {
"version_data" : [
{
"version_affected" : "<" ,
"version_value" : "60"
} ,
{
"version_affected" : "<" ,
"version_value" : "52.9"
}
]
}
} ,
{
"product_name" : "Firefox ESR" ,
"version" : {
"version_data" : [
{
"version_affected" : "<" ,
"version_value" : "60.1"
} ,
{
"version_affected" : "<" ,
"version_value" : "52.9"
}
]
}
} ,
{
"product_name" : "Firefox" ,
"version" : {
"version_data" : [
{
"version_affected" : "<" ,
"version_value" : "61"
}
]
}
}
]
} ,
"vendor_name" : "Mozilla"
}
]
}
2018-01-03 16:04:09 -05:00
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2018-10-18 08:32:12 -04:00
"value" : "Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, Firefox ESR 52.9, and Thunderbird 60"
}
]
}
]
} ,
"references" : {
"reference_data" : [
2018-10-19 06:06:20 -04:00
{
"name" : "[debian-lts-announce] 20180629 [SECURITY] [DLA 1406-1] firefox-esr security update" ,
"refsource" : "MLIST" ,
"url" : "https://lists.debian.org/debian-lts-announce/2018/06/msg00014.html"
} ,
{
"name" : "[debian-lts-announce] 20180714 [SECURITY] [DLA 1425-1] thunderbird security update" ,
"refsource" : "MLIST" ,
"url" : "https://lists.debian.org/debian-lts-announce/2018/07/msg00013.html"
} ,
2018-10-18 08:32:12 -04:00
{
2018-10-18 09:04:32 -04:00
"name" : "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1456189%2C1456975%2C1465898%2C1392739%2C1451297%2C1464063%2C1437842%2C1442722%2C1452576%2C1450688%2C1458264%2C1458270%2C1465108%2C1464829%2C1464079%2C1463494%2C1458048" ,
"refsource" : "CONFIRM" ,
"url" : "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1456189%2C1456975%2C1465898%2C1392739%2C1451297%2C1464063%2C1437842%2C1442722%2C1452576%2C1450688%2C1458264%2C1458270%2C1465108%2C1464829%2C1464079%2C1463494%2C1458048"
2018-10-18 08:32:12 -04:00
} ,
{
2018-10-18 09:04:32 -04:00
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-15/" ,
"refsource" : "CONFIRM" ,
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-15/"
2018-10-18 08:32:12 -04:00
} ,
{
2018-10-18 09:04:32 -04:00
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-16/" ,
"refsource" : "CONFIRM" ,
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-16/"
2018-10-18 08:32:12 -04:00
} ,
{
2018-10-18 09:04:32 -04:00
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-17/" ,
"refsource" : "CONFIRM" ,
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-17/"
2018-10-18 08:32:12 -04:00
} ,
{
2018-10-18 09:04:32 -04:00
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-18/" ,
"refsource" : "CONFIRM" ,
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-18/"
2018-10-18 08:32:12 -04:00
} ,
{
2018-10-18 09:04:32 -04:00
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-19/" ,
"refsource" : "CONFIRM" ,
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-19/"
2018-10-19 06:06:20 -04:00
} ,
{
"name" : "DSA-4244" ,
"refsource" : "DEBIAN" ,
"url" : "https://www.debian.org/security/2018/dsa-4244"
} ,
2018-10-20 06:03:47 -04:00
{
"name" : "GLSA-201810-01" ,
"refsource" : "GENTOO" ,
"url" : "https://security.gentoo.org/glsa/201810-01"
} ,
2018-10-19 06:06:20 -04:00
{
"name" : "RHSA-2018:2112" ,
"refsource" : "REDHAT" ,
"url" : "https://access.redhat.com/errata/RHSA-2018:2112"
} ,
{
"name" : "RHSA-2018:2113" ,
"refsource" : "REDHAT" ,
"url" : "https://access.redhat.com/errata/RHSA-2018:2113"
} ,
{
"name" : "RHSA-2018:2251" ,
"refsource" : "REDHAT" ,
"url" : "https://access.redhat.com/errata/RHSA-2018:2251"
} ,
{
"name" : "RHSA-2018:2252" ,
"refsource" : "REDHAT" ,
"url" : "https://access.redhat.com/errata/RHSA-2018:2252"
} ,
{
"name" : "USN-3705-1" ,
"refsource" : "UBUNTU" ,
"url" : "https://usn.ubuntu.com/3705-1/"
} ,
{
"name" : "USN-3714-1" ,
"refsource" : "UBUNTU" ,
"url" : "https://usn.ubuntu.com/3714-1/"
} ,
{
"name" : "USN-3749-1" ,
"refsource" : "UBUNTU" ,
"url" : "https://usn.ubuntu.com/3749-1/"
} ,
{
"name" : "104555" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/104555"
2018-01-03 16:04:09 -05:00
}
]
}
}
