Vulnerability CVE-2018-12367

Vulnerability Name:

CVE-2018-12367 (CCN-145346)

Assigned:

2018-06-26

Published:

2018-06-26

Updated:

2018-12-06

Summary:

In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTiming was not adjusted but it was found that it could be used as a precision timer. This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, and Firefox < 61.

CVSS v3 Severity:

4.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N)
3.8 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-20

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2018-12367

Source: BID
Type: Third Party Advisory, VDB Entry
104561

Source: CCN
Type: BID-104561
Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1041193

Source: CONFIRM
Type: Issue Tracking, Permissions Required, Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1462891

Source: XF
Type: UNKNOWN
firefox-cve201812367-weak-sec(145346)

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20181112 [SECURITY] [DLA 1575-1] thunderbird security update

Source: GENTOO
Type: Third Party Advisory
GLSA-201810-01

Source: GENTOO
Type: Third Party Advisory
GLSA-201811-13

Source: UBUNTU
Type: Third Party Advisory
USN-3705-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4295

Source: CCN
Type: Mozilla Foundation Security Advisory 2018-15
Security vulnerabilities fixed in Firefox 61

Source: CCN
Type: Mozilla Foundation Security Advisory 2018-16
Security vulnerabilities fixed in Firefox ESR 60.1

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-15/

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-16/

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-19/

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-12367

Vulnerable Configuration:

Configuration 1:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration 3:

cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version < 61.0)

OR cpe:/a:mozilla:firefox_esr:*:*:*:*:*:*:*:* (Version < 60.1.0)

OR cpe:/a:mozilla:thunderbird:*:*:*:*:*:*:*:* (Version < 60.0)

Configuration CCN 1:

cpe:/a:mozilla:firefox:60.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:60.0.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:51572	P	Security update for supportutils (Moderate)	2022-11-29
oval:org.opensuse.security:def:645	P	Security update for php7 (Moderate) (in QA)	2022-10-04
oval:org.opensuse.security:def:201812367	V	CVE-2018-12367	2022-09-02
oval:org.opensuse.security:def:4635	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-06-28
oval:org.opensuse.security:def:3546	P	libICE6-1.0.8-12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95176	P	MozillaThunderbird-91.8.0-150200.8.65.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:4615	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP5) (Important)	2022-05-23
oval:org.opensuse.security:def:4607	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:4740	P	Security update for the Linux RT Kernel (Critical)	2022-02-22
oval:org.opensuse.security:def:4680	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:111899	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64678	P	Security update for apache2 (Important)	2022-01-17
oval:org.opensuse.security:def:111905	P	MozillaThunderbird-91.1.1-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:1137	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:105476	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:105478	P	MozillaThunderbird-91.1.1-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:66933	P	Security update for gd (Moderate)	2021-09-27
oval:org.opensuse.security:def:71352	P	openssh-7.9p1-4.7 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64765	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:70289	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:48211	P	libunwind-1.1-11.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47659	P	krb5-appl-clients-1.0.3-1.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47673	P	libXdmcp6-1.1.1-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47794	P	libtasn1-4.9-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47987	P	cyrus-sasl-2.1.26-8.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47658	P	krb5-1.12.5-40.28.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48119	P	libgraphite2-3-1.3.1-10.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:1732	P	open-vm-tools-desktop-11.2.5-1.17 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101020	P	minicom-2.7.1-1.19 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1773	P	Security update for MozillaThunderbird (Important)	2021-07-22
oval:org.opensuse.security:def:68012	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:4725	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:66841	P	Security update for freeradius-server (Moderate)	2021-06-23
oval:org.opensuse.security:def:48359	P	DirectFB-1.7.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48719	P	freerdp-1.0.2-7.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48573	P	libzip2-0.11.1-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48784	P	libFLAC++6-32bit-1.3.0-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48657	P	yast2-3.1.206-36.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48815	P	raptor-2.0.10-3.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48886	P	telepathy-gabble-0.18.3-5.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:73624	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:68112	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:52021	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:51738	P	Security update for perl-XML-Twig (Moderate)	2021-03-01
oval:org.opensuse.security:def:94307	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103747	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63563	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107686	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117201	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63604	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2474	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90092	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71465	P	cups-filters-1.25.0-1.107 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2515	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4889	P	Security update for dovecot23 (Important)	2020-12-02
oval:org.opensuse.security:def:4832	P	Security update for bind (Important)	2020-12-02
oval:org.opensuse.security:def:4896	P	Security update for ovmf (Moderate)	2020-12-02
oval:org.opensuse.security:def:4857	P	Security update for postgresql (Moderate)	2020-12-02
oval:org.opensuse.security:def:51466	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:4903	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4916	P	Security update for mariadb (Moderate)	2020-12-02
oval:org.opensuse.security:def:5554	P	Security update for mutt (Important)	2020-12-02
oval:org.opensuse.security:def:5585	P	Security update for MozillaThunderbird (Important)	2020-12-02
oval:org.opensuse.security:def:4759	P	Security update for salt (Important)	2020-12-02
oval:org.opensuse.security:def:51058	P	Security update for docker-runc (Moderate)	2020-12-01
oval:org.opensuse.security:def:25678	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:24960	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:50173	P	MozillaThunderbird on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24949	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51295	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:25722	P	Security update for ovmf (Low)	2020-12-01
oval:org.opensuse.security:def:25024	P	Security update for nmap (Important)	2020-12-01
oval:org.opensuse.security:def:50897	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50160	P	libpskc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25151	P	Security update for file-roller (Low)	2020-12-01
oval:org.opensuse.security:def:50214	P	MozillaThunderbird on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25232	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:26395	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:53685	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25289	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:73506	P	jcl-over-slf4j on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52220	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:53759	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:70184	P	osc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25373	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:52292	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:50898	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:52129	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:25523	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:26360	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:52328	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50920	P	Security update for rubygem-bundler (Moderate)	2020-12-01
oval:org.opensuse.security:def:25664	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25576	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50119	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52409	P	Security update for fwupd (Moderate)	2020-12-01
oval:com.ubuntu.bionic:def:201812367000	V	CVE-2018-12367 on Ubuntu 18.04 LTS (bionic) - medium.	2018-10-18
oval:com.ubuntu.bionic:def:2018123670000000	V	CVE-2018-12367 on Ubuntu 18.04 LTS (bionic) - medium.	2018-10-18
oval:com.ubuntu.trusty:def:201812367000	V	CVE-2018-12367 on Ubuntu 14.04 LTS (trusty) - medium.	2018-10-18
oval:com.ubuntu.xenial:def:2018123670000000	V	CVE-2018-12367 on Ubuntu 16.04 LTS (xenial) - medium.	2018-10-18
oval:com.ubuntu.xenial:def:201812367000	V	CVE-2018-12367 on Ubuntu 16.04 LTS (xenial) - medium.	2018-10-18
oval:com.ubuntu.artful:def:201812367000	V	CVE-2018-12367 on Ubuntu 17.10 (artful) - medium.	2018-06-27

BACK