Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-5104

Опубликовано: 11 июн. 2018
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 7.5
CVSS3: 9.8

Описание

A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.

РелизСтатусПримечание
artful

released

58.0+build6-0ubuntu0.17.10.1
bionic

released

59.0.1+build1-0ubuntu1
devel

released

59.0.1+build1-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [58.0+build6-0ubuntu0.14.04.1]]
precise/esm

DNE

trusty

released

58.0+build6-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [58.0+build6-0ubuntu0.14.04.1]
upstream

released

58.0
xenial

released

58.0+build6-0ubuntu0.16.04.1

Показывать по

РелизСтатусПримечание
artful

released

1:52.6.0+build1-0ubuntu0.17.10.1
bionic

released

1:52.6.0+build1-0ubuntu1
devel

released

1:52.6.0+build1-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:52.6.0+build1-0ubuntu0.14.04.1]]
precise/esm

DNE

trusty

released

1:52.6.0+build1-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [1:52.6.0+build1-0ubuntu0.14.04.1]
upstream

released

52.6.0
xenial

released

1:52.6.0+build1-0ubuntu0.16.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 96%
0.22107
Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-5104

CVSS3: 9.8
redhat
больше 7 лет назад

A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.

nvd логотип

CVE-2018-5104

CVSS3: 9.8
nvd
около 7 лет назад

A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.

debian логотип

CVE-2018-5104

CVSS3: 9.8
debian
около 7 лет назад

A use-after-free vulnerability can occur during font face manipulation ...

github логотип

GHSA-w2h2-6mfq-pg77

CVSS3: 9.8
github
около 3 лет назад

A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.

fstec логотип

BDU:2021-00067

CVSS3: 9.8
fstec
около 7 лет назад

Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная c использованием после освобождениям, позволяющая нарушителю получить несанкционированный доступ к информации и нарушить ее целостность и доступность

EPSS

Процентиль: 96%
0.22107
Средний

7.5 High

CVSS2

9.8 Critical

CVSS3