CVE-2018-12406

Source
Severity Critical
Remote Yes
Type Arbitrary code execution
Description
Several memory safety bugs have been found in Firefox < 64.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with enough effort some of these could be exploited to run arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-833 firefox 63.0.3-1 64.0-1 Critical Fixed
Date Advisory Group Package Severity Description
12 Dec 2018 ASA-201812-9 AVG-833 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-12406
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1456947%2C1475669%2C1504816%2C1502886%2C1500064%2C1500310%2C1500696%2C1499198%2C1434490%2C1481745%2C1458129