CVE-2018-18511 log
Source |
|
Severity | High |
Remote | Yes |
Type | Same-origin policy bypass |
Description | A cross-origin theft of images issue has been found in the ImageBitmapRenderingContext component of firefox 65.0, where cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. The issue has been fixed in 65.0.1 and versions prior to 65.0 were not affected. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-896 | firefox | 65.0-2 | 65.0.1-1 | High | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
13 Feb 2019 | ASA-201902-16 | AVG-896 | firefox | High | multiple issues |
References |
---|
https://www.mozilla.org/en-US/security/advisories/mfsa2019-04/#CVE-2019-5785 https://bugzilla.mozilla.org/show_bug.cgi?id=1526218 |