An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2018-12/#CVE-2018-5159
Acknowledgments: Name: the Mozilla project Upstream: Ivan Fratric
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:1414 https://access.redhat.com/errata/RHSA-2018:1414
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:1415 https://access.redhat.com/errata/RHSA-2018:1415
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:1725 https://access.redhat.com/errata/RHSA-2018:1725
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:1726 https://access.redhat.com/errata/RHSA-2018:1726