Bug 1576279 (CVE-2018-5180) - CVE-2018-5180 Mozilla: heap-use-after-free in mozilla::WebGLContext::DrawElementsInstanced
Summary: CVE-2018-5180 Mozilla: heap-use-after-free in mozilla::WebGLContext::DrawElem...
Status: CLOSED NOTABUG
Alias: CVE-2018-5180
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=low,public=20180509,reported=2...
Keywords: Security
Depends On:
Blocks: 1573375
TreeView+ depends on / blocked
 
Reported: 2018-05-09 07:16 UTC by Doran Moppert
Modified: 2019-06-10 10:22 UTC (History)
5 users (show)

(edit)
Clone Of:
(edit)
Last Closed: 2019-06-10 10:22:23 UTC


Attachments (Terms of Use)

Description Doran Moppert 2018-05-09 07:16:31 UTC
A use-after-free vulnerability can occur during WebGL operations. While this results in a potentially exploitable crash, the vulnerability is limited because the memory is freed and reused in a brief window of time during the freeing of the same callstack.



External Reference:

https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/#CVE-2018-5180

Comment 1 Doran Moppert 2018-05-09 07:16:36 UTC
Acknowledgments:

Name: the Mozilla project
Upstream: Nils


Note You need to log in before you can comment on or make changes to this bug.