1
PublicDateAtUSN: 2018-05-10
2
Candidate: CVE-2018-5155
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155
6
https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/#CVE-2018-5155
7
https://www.mozilla.org/en-US/security/advisories/mfsa2018-12/#CVE-2018-5155
8
https://usn.ubuntu.com/usn/usn-3645-1
9
https://usn.ubuntu.com/usn/usn-3660-1
11
A use-after-free vulnerability can occur while adjusting layout during SVG
12
animations with text paths. This results in a potentially exploitable
13
crash. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR <
14
52.8, Firefox < 60, and Firefox ESR < 52.8.
20
Assigned-to: chrisccoulson
23
upstream_firefox: released (60.0)
24
precise/esm_firefox: DNE
25
trusty_firefox: released (60.0+build2-0ubuntu0.14.04.1)
26
xenial_firefox: released (60.0+build2-0ubuntu0.16.04.1)
27
artful_firefox: released (60.0+build2-0ubuntu0.17.10.1)
28
bionic_firefox: released (60.0+build2-0ubuntu1)
32
Priority_thunderbird: low
33
upstream_thunderbird: released (52.8.0)
34
precise/esm_thunderbird: DNE
35
trusty_thunderbird: released (1:52.8.0+build1-0ubuntu0.14.04.1)
36
xenial_thunderbird: released (1:52.8.0+build1-0ubuntu0.16.04.1)
37
artful_thunderbird: released (1:52.8.0+build1-0ubuntu0.17.10.1)
38
bionic_thunderbird: released (1:52.8.0+build1-0ubuntu0.18.04.1)
39
devel_thunderbird: needs-triage