Количество 19
Количество 19
CVE-2018-18505
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.
CVE-2018-18505
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.
CVE-2018-18505
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.
CVE-2018-18505
An earlier fix for an Inter-process Communication (IPC) vulnerability, ...
GHSA-5g4g-56fq-mvwf
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.
BDU:2019-00819
Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками реализации механизма аутентификации межпроцессного взаимодействия (IPC), позволяющая нарушителю повысить свои привилегии и выйти из изолированной программной среды
openSUSE-SU-2019:0133-1
Security update for MozillaFirefox
openSUSE-SU-2019:0132-1
Security update for MozillaFirefox
SUSE-SU-2019:0336-2
Security update for MozillaFirefox
SUSE-SU-2019:0336-1
Security update for MozillaFirefox
ELSA-2019-0219
ELSA-2019-0219: firefox security update (CRITICAL)
ELSA-2019-0218
ELSA-2019-0218: firefox security update (CRITICAL)
openSUSE-SU-2019:1758-1
Security update for MozillaFirefox
SUSE-SU-2019:0273-1
Security update for MozillaFirefox
ELSA-2019-0270
ELSA-2019-0270: thunderbird security update (IMPORTANT)
ELSA-2019-0269
ELSA-2019-0269: thunderbird security update (IMPORTANT)
openSUSE-SU-2019:0182-1
Security update for MozillaThunderbird
SUSE-SU-2019:0338-1
Security update for MozillaThunderbird
openSUSE-SU-2019:0251-1
Security update for MozillaThunderbird
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-18505 An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65. | CVSS3: 10 | 3% Низкий | около 7 лет назад |
 | CVE-2018-18505 An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65. | CVSS3: 10 | 3% Низкий | около 7 лет назад |
 | CVE-2018-18505 An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65. | CVSS3: 10 | 3% Низкий | около 7 лет назад |
| CVE-2018-18505 An earlier fix for an Inter-process Communication (IPC) vulnerability, ... | CVSS3: 10 | 3% Низкий | около 7 лет назад |
| GHSA-5g4g-56fq-mvwf An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65. | CVSS3: 10 | 3% Низкий | больше 3 лет назад |
 | BDU:2019-00819 Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками реализации механизма аутентификации межпроцессного взаимодействия (IPC), позволяющая нарушителю повысить свои привилегии и выйти из изолированной программной среды | CVSS3: 8.3 | 3% Низкий | около 7 лет назад |
 | openSUSE-SU-2019:0133-1 Security update for MozillaFirefox | около 7 лет назад | ||
| openSUSE-SU-2019:0132-1 Security update for MozillaFirefox | почти 7 лет назад | ||
| SUSE-SU-2019:0336-2 Security update for MozillaFirefox | почти 7 лет назад | ||
| SUSE-SU-2019:0336-1 Security update for MozillaFirefox | почти 7 лет назад | ||
| ELSA-2019-0219 ELSA-2019-0219: firefox security update (CRITICAL) | около 7 лет назад | ||
| ELSA-2019-0218 ELSA-2019-0218: firefox security update (CRITICAL) | около 7 лет назад | ||
| openSUSE-SU-2019:1758-1 Security update for MozillaFirefox | больше 6 лет назад | ||
| SUSE-SU-2019:0273-1 Security update for MozillaFirefox | около 7 лет назад | ||
| ELSA-2019-0270 ELSA-2019-0270: thunderbird security update (IMPORTANT) | около 7 лет назад | ||
| ELSA-2019-0269 ELSA-2019-0269: thunderbird security update (IMPORTANT) | около 7 лет назад | ||
| openSUSE-SU-2019:0182-1 Security update for MozillaThunderbird | почти 7 лет назад | ||
| SUSE-SU-2019:0338-1 Security update for MozillaThunderbird | почти 7 лет назад | ||
| openSUSE-SU-2019:0251-1 Security update for MozillaThunderbird | почти 7 лет назад |
Уязвимостей на страницу