vulnerability

Red Hat: CVE-2018-12376: Critical: firefox security update (Multiple Advisories)

Name: Red Hat: CVE-2018-12376: Critical: firefox security update (Multiple Advisories)
Creator: Red Hat
Published: 2018-09-05T00:00:00.000Z
Keywords: CVE, Red Hat, 2018, 12376, Critical, redhat-upgrade-firefox, redhat-upgrade-firefox-debuginfo, redhat-upgrade-thunderbird, redhat-upgrade-thunderbird-debuginfo, Severity 8

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Sep 5, 2018

Added

Sep 13, 2018

Modified

Mar 3, 2021

Description

Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and Thunderbird < 60.2.1.

Solutions

redhat-upgrade-firefoxredhat-upgrade-firefox-debuginforedhat-upgrade-thunderbirdredhat-upgrade-thunderbird-debuginfo

References

BID-105280
DEBIAN-DSA-4287
DEBIAN-DSA-4327
NVD-CVE-2018-12376
REDHAT-RHSA-2018:2692
REDHAT-RHSA-2018:2693
REDHAT-RHSA-2018:3403
REDHAT-RHSA-2018:3458

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report