CVE-2018-18493

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A buffer overflow can occur in the Skia library use by Firefox < 64.0, during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit.
Group Package Affected Fixed Severity Status Ticket
AVG-833 firefox 63.0.3-1 64.0-1 Critical Fixed
Date Advisory Group Package Severity Description
12 Dec 2018 ASA-201812-9 AVG-833 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18493
https://bugzilla.mozilla.org/show_bug.cgi?id=1504452