CVE-2018-12376

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-12376

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-12376.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-12376

Downstream

DEBIAN-CVE-2018-12376

DLA-1575-1

DSA-4287-1

DSA-4327-1

RHSA-2018:2692

RHSA-2018:2693

RHSA-2018:3403

RHSA-2018:3458

SUSE-SU-2018:2890-1

SUSE-SU-2018:3247-1

SUSE-SU-2018:3591-1

SUSE-SU-2018:3591-2

UBUNTU-CVE-2018-12376

USN-3761-1

USN-3793-1

openSUSE-SU-2018:3687-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Withdrawn

2026-01-27T04:16:05.001401Z

Published

2018-10-18T13:29:04Z

Modified

2026-01-27T04:16:05.001401Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and Thunderbird < 60.2.1.

References

Affected packages