Уязвимость CVE-2018-5156: Информация
Описание
A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This can result in stream data being cast to the wrong type causing a potentially exploitable crash. This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
Важность: CRITICAL (9,8) Вектор: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Исправленные пакеты
Ссылки на рекомендации, решения и инструменты
Ссылка | Ресурс |
---|---|
https://www.mozilla.org/security/advisories/mfsa2018-19/ |
|
https://www.mozilla.org/security/advisories/mfsa2018-17/ |
|
https://www.mozilla.org/security/advisories/mfsa2018-16/ |
|
https://www.mozilla.org/security/advisories/mfsa2018-15/ |
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1453127 |
|
DSA-4295 |
|
DSA-4235 |
|
USN-3705-1 |
|
[debian-lts-announce] 20180629 [SECURITY] [DLA 1406-1] firefox-esr security update |
|
RHSA-2018:2113 |
|
RHSA-2018:2112 |
|
1041193 |
|
104560 |
|
GLSA-201810-01 |
|
[debian-lts-announce] 20181112 [SECURITY] [DLA 1575-1] thunderbird security update |
|
GLSA-201811-13 |
|