vulnerability

FreeBSD: VID-18211552-F650-4D86-BA4F-E6D5CBFCDBEB (CVE-2019-5785): mozilla -- multiple vulnerabilities

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Feb 13, 2019
Added
Feb 14, 2019
Modified
Jul 3, 2019

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.


From VID-18211552-F650-4D86-BA4F-E6D5CBFCDBEB:




Mozilla Foundation reports:



CVE-2018-18356: Use-after-free in Skia


CVE-2019-5785: Integer overflow in Skia


CVE-2018-18511: Cross-origin theft of images with ImageBitmapRenderingContext




Solution(s)

freebsd-upgrade-package-firefoxfreebsd-upgrade-package-firefox-esrfreebsd-upgrade-package-thunderbird
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.