FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 65.0.1,1
firefox-esr < 60.5.1,1
thunderbird < 60.5.1

Details

VuXML ID 18211552-f650-4d86-ba4f-e6d5cbfcdbeb
Discovery 2019-02-13
Entry 2019-02-13

Mozilla Foundation reports:

CVE-2018-18356: Use-after-free in Skia

CVE-2019-5785: Integer overflow in Skia

CVE-2018-18511: Cross-origin theft of images with ImageBitmapRenderingContext

References

CVE Name CVE-2018-18356
CVE Name CVE-2018-18511
CVE Name CVE-2019-5785
URL https://www.mozilla.org/en-US/security/advisories/mfsa2019-04/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/