CVE-2018-18356: Use-after-free in Skia Impact high Description A use-after-free vulnerability in the Skia library can occur when creating a path, leading to a potentially exploitable crash. CVE-2019-5785: Integer overflow in Skia Impact high Description An integer overflow vulnerability in the Skia library can occur after specific transform operations, leading to a potentially exploitable crash. CVE-2018-18335: Buffer overflow in Skia with accelerated Canvas 2D Impact high Description A buffer overflow vulnerability in the Skia library can occur with Canvas 2D acceleration on macOS. This issue was addressed by disabling Canvas 2D acceleration in Firefox ESR. Note: this does not affect other versions and platforms where Canvas 2D acceleration is already disabled by default. CVE-2018-18509: S/MIME signature spoofing Impact high Description A flaw during verification of certain S/MIME signatures causes emails to be shown in Thunderbird as having a valid digital signature, even if the shown message contents aren't covered by the signature. The flaw allows an attacker to reuse a valid S/MIME signature to craft an email message with arbitrary content.
x86 stable
amd64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=aa065e4f80e91585d0e1f45d9097405edb0c9737 commit aa065e4f80e91585d0e1f45d9097405edb0c9737 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2019-02-20 21:01:52 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2019-02-20 21:01:52 +0000 mail-client/thunderbird-bin: security cleanup Bug: https://bugs.gentoo.org/678072 Package-Manager: Portage-2.3.60, Repoman-2.3.12 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> mail-client/thunderbird-bin/Manifest | 111 ------------ .../thunderbird-bin-60.4.0-r1.ebuild | 187 --------------------- .../thunderbird-bin/thunderbird-bin-60.5.0.ebuild | 187 --------------------- 3 files changed, 485 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b7ed919f55c68dffbc87c79123478c9c61e7b73f commit b7ed919f55c68dffbc87c79123478c9c61e7b73f Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2019-02-20 21:00:53 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2019-02-20 21:00:53 +0000 mail-client/thunderbird: security cleanup Bug: https://bugs.gentoo.org/678072 Package-Manager: Portage-2.3.60, Repoman-2.3.12 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> mail-client/thunderbird/Manifest | 110 ----- mail-client/thunderbird/thunderbird-60.4.0.ebuild | 564 ---------------------- mail-client/thunderbird/thunderbird-60.5.0.ebuild | 564 ---------------------- 3 files changed, 1238 deletions(-)
Maintainer(s), please drop the vulnerable version(s). New GLSA Request filed.
This issue was resolved and addressed in GLSA 201904-07 at https://security.gentoo.org/glsa/201904-07 by GLSA coordinator Aaron Bauman (b-man).