CVE-2018-12379

HIGH

Mozilla Updater - Out-of-bounds Write

Title source: llm

Description

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and Thunderbird < 60.2.1.

References (14)

Core 14

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/105280

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201810-01

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2693

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201811-13

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4327

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:3403

Vendor Advisory x_refsource_confirm

https://www.mozilla.org/security/advisories/mfsa2018-20/

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1041610

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:2692

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:3458

Vendor Advisory x_refsource_confirm

https://www.mozilla.org/security/advisories/mfsa2018-21/

Vendor Advisory x_refsource_confirm

https://www.mozilla.org/security/advisories/mfsa2018-25/

Issue Tracking, Permissions Required, Vendor Advisory x_refsource_confirm

https://bugzilla.mozilla.org/show_bug.cgi?id=1473113

Scores

CVSS v3 7.8

EPSS 0.0010

EPSS Percentile 26.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (14)

debian/debian_linux 8.0

debian/debian_linux 9.0

mozilla/firefox < 60.2.0

mozilla/thunderbird < 60.2.1

redhat/enterprise_linux_desktop 6.0

redhat/enterprise_linux_desktop 7.0

redhat/enterprise_linux_server 6.0

redhat/enterprise_linux_server 7.0

redhat/enterprise_linux_server_aus 7.6

redhat/enterprise_linux_server_eus 7.5

... and 4 more

Published Oct 18, 2018

Tracked Since Feb 18, 2026