CVE-2018-12387

Related Files

Red Hat Security Advisory 2018-2884-01

Posted Oct 8, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2884-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.2.2 ESR. Issues addressed include type confusion and out-of-bounds read vulnerabilities.

tags | advisory, web, vulnerability

systems | linux, redhat

advisories | CVE-2018-12386, CVE-2018-12387

SHA-256 | a503d8f752218d1ebc2a0f3c9de265aac7e02a167b6516ef1f115e1f3369b673

Download | Favorite | View

Red Hat Security Advisory 2018-2881-01

Posted Oct 8, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2881-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.2.2 ESR. Issues addressed include an out-of-bounds read.

tags | advisory, web

systems | linux, redhat

advisories | CVE-2018-12386, CVE-2018-12387

SHA-256 | 8be099e7a5728383e2bf6b4a48e46f149d1ef5b73774acdf5f44311b39e6b277

Download | Favorite | View

Debian Security Advisory 4310-1

Posted Oct 4, 2018

Authored by Debian | Site debian.org

Debian Linux Security Advisory 4310-1 - Two security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code inside the sandboxed content process.

tags | advisory, web, arbitrary

systems | linux, debian

advisories | CVE-2018-12386, CVE-2018-12387

SHA-256 | edbb1cf8b0b9f5831faa87650ee6af1af53f44820683e261ff3597ceb64387f1

Download | Favorite | View

Ubuntu Security Notice USN-3778-1

Posted Oct 4, 2018

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3778-1 - A crash was discovered in TransportSecurityInfo used for SSL, which could be triggered by data stored in the local cache directory. An attacker could potentially exploit this in combination with another vulnerability that allowed them to write data to the cache, to execute arbitrary code. A type confusion bug was discovered in JavaScript. If a user were tricked in to opening a specially crafted website, an attacker could exploit this to cause a denial of service, or execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local, javascript

systems | linux, ubuntu

advisories | CVE-2018-12385, CVE-2018-12386, CVE-2018-12387

SHA-256 | a69ab9fe6502be4b61f6561f6d0e2050616a619735003e0abb30915f7a0370a6

Download | Favorite | View

Slackware Security Advisory - mozilla-firefox Updates

Posted Oct 3, 2018

Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.2 and -current to fix a security issue.

tags | advisory

systems | linux, slackware

advisories | CVE-2018-12387

SHA-256 | e409996a93b56a3beccbb769cb31201dc29fd079c498e1cb926597616d9195b0

Download | Favorite | View

Gentoo Linux Security Advisory 201810-01

Posted Oct 2, 2018

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201810-1 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which may allow execution of arbitrary code. Versions less than 60.2.2 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2017-16541, CVE-2018-12358, CVE-2018-12359, CVE-2018-12360, CVE-2018-12361, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12367, CVE-2018-12368, CVE-2018-12369, CVE-2018-12370, CVE-2018-12371, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12381, CVE-2018-12383, CVE-2018-12385, CVE-2018-12386, CVE-2018-12387, CVE-2018-5125, CVE-2018-5127

SHA-256 | 0691ae8021da4956449e6d4f9c1fdd0355496e51bc68aa1daaad0d960ac3e310

Download | Favorite | View