CVE-2018-5129 - log back

CVE-2018-5129 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Local
Type
+ Access restriction bypass
Description
+ A lack of parameter validation on IPC messages results in a potential out-of-bounds write in Thunderbird < 52.7.0, through malformed IPC messages. This can potentially allow for sandbox escape through memory corruption in the parent process.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/#CVE-2018-5129
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1428947
Notes