1
PublicDateAtUSN: 2018-01-23
2
Candidate: CVE-2018-5104
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5104
6
https://www.mozilla.org/en-US/security/advisories/mfsa2018-02/
7
https://usn.ubuntu.com/usn/usn-3544-1
8
https://usn.ubuntu.com/usn/usn-3529-1
10
A use-after-free vulnerability can occur during font face manipulation when
11
a font face is freed while still in use, resulting in a potentially
12
exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox
13
ESR < 52.6, and Firefox < 58.
19
Assigned-to: chrisccoulson
22
upstream_firefox: released (58.0)
23
precise/esm_firefox: DNE
24
trusty_firefox: released (58.0+build6-0ubuntu0.14.04.1)
25
xenial_firefox: released (58.0+build6-0ubuntu0.16.04.1)
26
artful_firefox: released (58.0+build6-0ubuntu0.17.10.1)
27
bionic_firefox: released (59.0.1+build1-0ubuntu1)
28
devel_firefox: released (59.0.1+build1-0ubuntu1)
31
Priority_thunderbird: low
32
upstream_thunderbird: released (52.6.0)
33
precise/esm_thunderbird: DNE
34
trusty_thunderbird: released (1:52.6.0+build1-0ubuntu0.14.04.1)
35
xenial_thunderbird: released (1:52.6.0+build1-0ubuntu0.16.04.1)
36
artful_thunderbird: released (1:52.6.0+build1-0ubuntu0.17.10.1)
37
bionic_thunderbird: released (1:52.6.0+build1-0ubuntu1)
38
devel_thunderbird: released (1:52.6.0+build1-0ubuntu1)