Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2020-25/#CVE-2020-12418
Acknowledgments: Name: the Mozilla project Upstream: Marcin 'Icewall' Noga (Cisco Talos)
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions Via RHSA-2020:2825 https://access.redhat.com/errata/RHSA-2020:2825
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2020:2824 https://access.redhat.com/errata/RHSA-2020:2824
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2020:2826 https://access.redhat.com/errata/RHSA-2020:2826
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:2828 https://access.redhat.com/errata/RHSA-2020:2828
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:2827 https://access.redhat.com/errata/RHSA-2020:2827
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-12418
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2020:2907 https://access.redhat.com/errata/RHSA-2020:2907
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:2906 https://access.redhat.com/errata/RHSA-2020:2906
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2020:2966 https://access.redhat.com/errata/RHSA-2020:2966
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions Via RHSA-2020:3046 https://access.redhat.com/errata/RHSA-2020:3046
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:3038 https://access.redhat.com/errata/RHSA-2020:3038