VulnerableCode Package Details - pkg:alpm/archlinux/firefox@64.0.2-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-8tfc-2aaq-47dk Aliases: CVE-2018-18504	A crash and out-of-bounds read can occur when the buffer of a texture client is freed while it is still in use during graphic operations. This results in a potentially exploitable crash and the possibility of reading from the memory of the freed buffers.	65.0-1 Affected by 0 other vulnerabilities.
VCID-ajzz-xqu4-y7fe Aliases: CVE-2018-18503	When JavaScript is used to create and manipulate an audio buffer, a potentially exploitable crash may occur because of a compartment mismatch in some situations.	65.0-1 Affected by 0 other vulnerabilities.
VCID-ce3x-bw1m-jyf4 Aliases: CVE-2018-18506	Multiple vulnerabilities have been found in Mozilla Thunderbird and Firefox, the worst of which could lead to the execution of arbitrary code.	65.0-1 Affected by 0 other vulnerabilities.
VCID-t2pe-y7k4-1ff2 Aliases: CVE-2018-18502	Mozilla developers and community members Arthur Iakab, Christoph Diehl, Christian Holler, Kalel, Emilio Cobos Álvarez, Cristina Coroiu, Noemi Erli, Natalia Csoregi, Julian Seward, Gary Kwong, Tyson Smith, Yaron Tausky, and Ronald Crane reported memory safety bugs present in Firefox 64. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.	65.0-1 Affected by 0 other vulnerabilities.
VCID-tbu1-adxe-sudv Aliases: CVE-2018-18501	Multiple vulnerabilities have been found in Mozilla Thunderbird and Firefox, the worst of which could lead to the execution of arbitrary code.	65.0-1 Affected by 0 other vulnerabilities.
VCID-tec1-8t8s-zqgb Aliases: CVE-2018-18500	Multiple vulnerabilities have been found in Mozilla Thunderbird and Firefox, the worst of which could lead to the execution of arbitrary code.	65.0-1 Affected by 0 other vulnerabilities.
VCID-wwgd-pew4-zkf5 Aliases: CVE-2018-18505	Multiple vulnerabilities have been found in Mozilla Thunderbird and Firefox, the worst of which could lead to the execution of arbitrary code.	65.0-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-8tfc-2aaq-47dk
Aliases:
CVE-2018-18504

A crash and out-of-bounds read can occur when the buffer of a texture client is freed while it is still in use during graphic operations. This results in a potentially exploitable crash and the possibility of reading from the memory of the freed buffers.