Oval Definition:	oval:com.ubuntu.bionic:def:2018185000000000
Revision Date: 2019-02-05 Version: 1 Title: CVE-2018-18500 on Ubuntu 18.04 LTS (bionic) - medium. Description: A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the stream parser object being freed while still in use, leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-18500 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information firefox package in bionic was vulnerable but has been fixed (note: '65.0+build2-0ubuntu0.18.04.1'). OR mozjs38 package in bionic is affected and may need fixing. OR mozjs52 package in bionic is affected and may need fixing. OR thunderbird package in bionic was vulnerable but has been fixed (note: '1:60.5.1+build2-0ubuntu0.18.04.1').
BACK