AVG-775

Package firefox
Status Fixed
Severity Critical
Type multiple issues
Affected 62.0.2-1
Fixed 62.0.3-1
Current 67.0.2-1 [extra]
Ticket None
Created Thu Oct 4 07:35:24 2018
Issue Severity Remote Type Description
CVE-2018-12387 Critical Yes Information disclosure
A vulnerability has been found in Firefox before 62.0.3 where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results...
CVE-2018-12386 Critical Yes Arbitrary code execution
A vulnerability has been found in Firefox before 62.0.3 in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and...
Date Advisory Package Description
04 Oct 2018 ASA-201810-6 firefox multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/