Unrated severityNVD Advisory· Published Jul 9, 2020· Updated Aug 5, 2024
CVE-2018-12371
CVE-2018-12371
Description
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR < 60.1, Thunderbird < 60, and Firefox < 61.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11<60.1+ 3 more
- (no CPE)range: <60.1
- (no CPE)range: <61
- (no CPE)range: unspecified
- (no CPE)range: unspecified
<60+ 1 more
- (no CPE)range: <60
- (no CPE)range: unspecified
- osv-coords5 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Package%20Hub%2012
< 128.5.1-1.1+ 4 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 92.0-1.2
- (no CPE)range: < 91.1.1-1.1
- (no CPE)range: < 60.2.1-3.13.1
- (no CPE)range: < 60.3.0-74.2
Patches
Vulnerability mechanics
References
4- bugzilla.mozilla.org/show_bug.cgimitrex_refsource_MISC
- www.mozilla.org/security/advisories/mfsa2018-15/mitrex_refsource_MISC
- www.mozilla.org/security/advisories/mfsa2018-16/mitrex_refsource_MISC
- www.mozilla.org/security/advisories/mfsa2018-19/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.