Oval Definition:	oval:com.ubuntu.cosmic:def:2018123860000000
Revision Date: 2018-10-18 Version: 1 Title: CVE-2018-12386 on Ubuntu 18.10 (cosmic) - medium. Description: A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process when triggered. This vulnerability affects Firefox ESR < 60.2.2 and Firefox < 62.0.3. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-12386 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information firefox package in cosmic was vulnerable but has been fixed (note: '62.0.3+build1-0ubuntu1'). OR mozjs52: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR thunderbird package in cosmic was vulnerable but has been fixed (note: '1:60.4.0+build2-0ubuntu0.18.10.1').
BACK