mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
172 lines
6.0 KiB
JSON
172 lines
6.0 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "security@mozilla.org",
|
|
"ID" : "CVE-2018-5150",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Thunderbird",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_affected" : "<",
|
|
"version_value" : "52.8"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name" : "Thunderbird ESR",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_affected" : "<",
|
|
"version_value" : "52.8"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name" : "Firefox",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_affected" : "<",
|
|
"version_value" : "60"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name" : "Firefox ESR",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_affected" : "<",
|
|
"version_value" : "52.8"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Mozilla"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Memory safety bugs fixed in Firefox 60, Firefox ESR 52.8, and Thunderbird 52.8"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "[debian-lts-announce] 20180511 [SECURITY] [DLA 1376-1] firefox-esr security update",
|
|
"refsource" : "MLIST",
|
|
"url" : "https://lists.debian.org/debian-lts-announce/2018/05/msg00007.html"
|
|
},
|
|
{
|
|
"name" : "[debian-lts-announce] 20180525 [SECURITY] [DLA 1382-1] thunderbird security update",
|
|
"refsource" : "MLIST",
|
|
"url" : "https://lists.debian.org/debian-lts-announce/2018/05/msg00013.html"
|
|
},
|
|
{
|
|
"name" : "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1388020%2C1433609%2C1409440%2C1448705%2C1451376%2C1452202%2C1444668%2C1393367%2C1411415%2C1426129",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1388020%2C1433609%2C1409440%2C1448705%2C1451376%2C1452202%2C1444668%2C1393367%2C1411415%2C1426129"
|
|
},
|
|
{
|
|
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-11/",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-11/"
|
|
},
|
|
{
|
|
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-12/",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-12/"
|
|
},
|
|
{
|
|
"name" : "https://www.mozilla.org/security/advisories/mfsa2018-13/",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://www.mozilla.org/security/advisories/mfsa2018-13/"
|
|
},
|
|
{
|
|
"name" : "DSA-4199",
|
|
"refsource" : "DEBIAN",
|
|
"url" : "https://www.debian.org/security/2018/dsa-4199"
|
|
},
|
|
{
|
|
"name" : "DSA-4209",
|
|
"refsource" : "DEBIAN",
|
|
"url" : "https://www.debian.org/security/2018/dsa-4209"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1414",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1414"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1415",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1415"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1725",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1725"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1726",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1726"
|
|
},
|
|
{
|
|
"name" : "USN-3645-1",
|
|
"refsource" : "UBUNTU",
|
|
"url" : "https://usn.ubuntu.com/3645-1/"
|
|
},
|
|
{
|
|
"name" : "USN-3660-1",
|
|
"refsource" : "UBUNTU",
|
|
"url" : "https://usn.ubuntu.com/3660-1/"
|
|
},
|
|
{
|
|
"name" : "104136",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/104136"
|
|
},
|
|
{
|
|
"name" : "1040896",
|
|
"refsource" : "SECTRACK",
|
|
"url" : "http://www.securitytracker.com/id/1040896"
|
|
}
|
|
]
|
|
}
|
|
}
|