MGASA-2018-0115
- Source
- https://advisories.mageia.org/MGASA-2018-0115.html
- Import Source
- https://advisories.mageia.org/MGASA-2018-0115.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2018-0115
- Related
- Published
- 2018-02-06T06:25:44Z
- Modified
- 2018-02-06T05:50:58Z
- Summary
- Updated thunderbird packages fix security vulnerability
- Details
-
Integer overflow in Skia library during edge builder allocation. (CVE-2018-5095)
Use-after-free while editing form elements. (CVE-2018-5096)
Use-after-free when source document is manipulated during XSLT. (CVE-2018-5097)
Use-after-free while manipulating form input elements. (CVE-2018-5098)
Use-after-free with widget listener. (CVE-2018-5099)
Use-after-free in HTML media elements. (CVE-2018-5102)
Use-after-free during mouse event handling. (CVE-2018-5103)
Use-after-free during font face manipulation. (CVE-2018-5104)
URL spoofing with right-to-left text aligned left-to-right. (CVE-2018-5117)
Memory safety bugs fixed in Firefox 58, Firefox ESR 52.6, and Thunderbird 52.6. (CVE-2018-5089)
- References
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:5 / thunderbird
Package
- Name
- thunderbird
- Purl
- pkg:rpm/mageia/thunderbird?distro=mageia-5
Mageia:5 / thunderbird-l10n
Package
- Name
- thunderbird-l10n
- Purl
- pkg:rpm/mageia/thunderbird-l10n?distro=mageia-5
Mageia:6 / thunderbird
Package
- Name
- thunderbird
- Purl
- pkg:rpm/mageia/thunderbird?distro=mageia-6
Mageia:6 / thunderbird-l10n
Package
- Name
- thunderbird-l10n
- Purl
- pkg:rpm/mageia/thunderbird-l10n?distro=mageia-6