CVE-2018-12375: Buffer Overflow

Reference Links

• https://bugzilla.mozilla.org/buglist.cgi?bug_id=1478849%2C1433502%2C1480965%2C894215%2C1462693%2C1475431%2C1461027
• https://www.mozilla.org/security/advisories/mfsa2018-20/
• https://usn.ubuntu.com/3761-1/
• http://www.securityfocus.com/bid/105276
• http://www.securitytracker.com/id/1041610
• https://launchpad.net/bugs/cve/CVE-2018-12375
• https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/
• https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12378
• https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12375
• https://security-tracker.debian.org/tracker/CVE-2018-12375
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12375
• https://nvd.nist.gov/vuln/detail/CVE-2018-12375
• https://ubuntu.com/security/CVE-2018-12375

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2018-20

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2018-12377
• CVE-2018-12378
• CVE-2018-18499
• CVE-2018-12379
• CVE-2017-16541
• CVE-2018-12381
• CVE-2018-12382
• CVE-2018-12383
• CVE-2018-12375
• CVE-2018-12376

Frequently Asked Questions

• What is the severity of CVE-2018-12375?

  CVE-2018-12375 is a vulnerability that can potentially allow an attacker to execute arbitrary code due to memory corruption in Firefox.

• How do I fix CVE-2018-12375?

  To fix CVE-2018-12375, update Firefox to version 62 or later.

• Which versions of Firefox are affected by CVE-2018-12375?

  CVE-2018-12375 affects all Firefox versions prior to 62.

• Is CVE-2018-12375 present in Ubuntu Linux?

  Yes, CVE-2018-12375 is present in Ubuntu Linux versions that include Firefox prior to version 62.

• What types of attacks can CVE-2018-12375 lead to?

  CVE-2018-12375 can potentially lead to remote code execution attacks if exploited.