CVE-2018-5183

Summary

Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbird ESRunspecified < 52.8affected
MozillaThunderbirdunspecified < 52.8affected
MozillaFirefox ESRunspecified < 52.8affected

Weaknesses

  • Backport critical security fixes in Skia

ADP Enrichment

CVE Program Container

Additional References

References