CVE-2018-5183

Published: 10 May 2018

Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.

Priority

Medium

CVSS 3 base score: 9.8

Status

Package Release Status
thunderbird
Launchpad, Ubuntu, Debian
Upstream
Released (52.8.0)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (1:52.8.0+build1-0ubuntu0.18.04.1)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (1:52.8.0+build1-0ubuntu0.16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1:52.8.0+build1-0ubuntu0.14.04.1])