| Errata ID | 412 |
|---|---|
| Date | 2019-02-06 |
| Source package | firefox-esr |
| Fixed in version | 60.5.0esr-1~deb9u1 |
| Description | This update addresses the following issues: * Use-after-free parsing HTML5 stream (CVE-2018-18500) * Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5 (CVE-2018-18501) * Privilege escalation through IPC channel messages (CVE-2018-18505) |
| Additional notes | |
| CVE ID | CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 |
| UCS Bug number | #48589 |
