CVE-2018-5148

Summary

A use-after-free vulnerability can occur in the compositor during certain graphics operations when a raw pointer is used instead of a reference counted one. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 52.7.3 and Firefox < 59.0.2.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 52.7.3affected
MozillaFirefoxunspecified < 59.0.2affected

Weaknesses

  • Use-after-free in compositor

ADP Enrichment

CVE Program Container

Additional References

References