CVE-2018-5094

Summary

A heap buffer overflow vulnerability may occur in WebAssembly when "shrinkElements" is called followed by garbage collection on memory that is now uninitialized. This results in a potentially exploitable crash. This vulnerability affects Firefox < 58.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 58affected

Weaknesses

  • Buffer overflow in WebAssembly with garbage collection on uninitialized memory

ADP Enrichment

CVE Program Container

Additional References

References