KLA11259
DoS vulnerability in Mozilla Firefox and Firefox ESR
Updated: 09/10/2018
CVSS
?
7.5
Detect date
?
06/08/2018
Severity
?
Critical
Description

A heap buffer overflow vulnerability was found in the Skia library. By exploiting this vulnerability malicious users can cause denial of service via specially crafted SVG file with anti-aliasing turned off.

Affected products

Mozilla Firefox earlier than 60.0.2
Mozilla Firefox ESR earlier than 52.8.1
Mozilla Firefox ESR earlier than 60.0.2

Solution

Update to the latest version
Download Mozilla Firefox ESR
Download Mozilla Firefox

Original advisories

Mozilla Foundation Security Advisory 2018-14

Impacts
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

XSSCSS 
[?]
Related products
Mozilla Firefox
Mozilla Firefox ESR
CVE-IDS
?

CVE-2018-6126