Description
The libtremor library has the same flaw as CVE-2018-5146. This library is
used by Firefox in place of libvorbis on Android and ARM platforms. This
vulnerability affects Firefox ESR < 52.7.2 and Firefox < 59.0.1.
Assigned-to
chrisccoulson
Package
| Upstream: | released
(59.0.1)
|
| Ubuntu 18.04 LTS: | released
(59.0.1+build1-0ubuntu1)
|
| Ubuntu 16.04 ESM: | released
(59.0.1+build1-0ubuntu0.16.04.1)
|
| Ubuntu 14.04 ESM: | DNE
(trusty was needs-triage)
|
Patches:
Package
| Upstream: | needs-triage
|
| Ubuntu 18.04 LTS: | DNE
|
| Ubuntu 14.04 ESM: | DNE
|
Patches:
Package
| Upstream: | needs-triage
|
| Ubuntu 18.04 LTS: | not-affected
(1.0.2+svn18153-1+deb9u1)
|
| Ubuntu 14.04 ESM: | released
(1.0.2+svn18153-0.2+deb7u1build0.14.04.1)
|
Patches:
Updated: 2022-04-13 13:32:58 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)