PT-2018-2707 · Mozilla+5 · Firefox Esr+7

R

·

Published

2018-12-11

·

Updated

2024-12-12

·

CVE-2018-18498

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 64 Firefox ESR versions prior to 60.4 Thunderbird versions prior to 60.4
Description The issue is related to an integer overflow that can lead to an out-of-bounds write in memory. This can be exploited by a remote attacker to potentially write data outside the boundaries of a buffer. The vulnerability is associated with buffer size calculations for images when an unchecked raw value is used instead of a validated value.
Recommendations For Firefox versions prior to 64, update to version 64 or later to resolve the issue. For Firefox ESR versions prior to 60.4, update to version 60.4 or later to resolve the issue. For Thunderbird versions prior to 60.4, update to version 60.4 or later to resolve the issue.

Fix

Memory Corruption

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-190

Related Identifiers

ALT-PU-2018-2824
ALT-PU-2018-2958
ALT-PU-2018-2963
ALT-PU-2019-2324
ALT-PU-2019-2486
BDU:2019-01423
CESA-2018_3831
CESA-2018_3833
CESA-2019_0159
CESA-2019_0160
CVE-2018-18498
DLA-1605-1
DLA-1624-1
DSA-4354-1
DSA-4362-1
MGASA-2018-0483
OPENSUSE-SU-2018_4112-1
OPENSUSE-SU-2019:0249-1
OPENSUSE-SU-2019:0251-1
OPENSUSE-SU-2019_0182-1
OPENSUSE-SU-2019_0251-1
OPENSUSE-SU-2024:10600-1
OPENSUSE-SU-2024:10601-1
OPENSUSE-SU-2024:14572-1
RHSA-2018:3831
RHSA-2018:3833
RHSA-2018_3831
RHSA-2018_3833
RHSA-2019:0159
RHSA-2019:0160
RHSA-2019_0159
RHSA-2019_0160
SUSE-SU-2018:4235-1
SUSE-SU-2018:4236-1
SUSE-SU-2018:4236-2
SUSE-SU-2019:0338-1
USN-3844-1
USN-3868-1

Affected Products

Alt Linux
Centos
Firefox
Firefox Esr
Red Hat
Suse
Thunderbird
Ubuntu