High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-11	CVE-2018-5099	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when the widget listener is holding strong references to browser objects that have previously been freed, resulting in a potentially exploitable crash when these references are used. network low complexity debian redhat mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5098	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when form input elements, focus, and selections are manipulated by script content. network low complexity debian redhat mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5097	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur during XSL transformations when the source document for the transformation is manipulated by script content during the transformation. network low complexity debian redhat mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5095	Use of Uninitialized Resource vulnerability in multiple products An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. network low complexity debian redhat mozilla canonical CWE-908	7.5
2018-06-11	CVE-2018-5092	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when the thread for a Web Worker is freed from memory prematurely instead of from memory in the main thread while cancelling fetch operations. network low complexity mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5091	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. network low complexity debian redhat mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5089	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. network low complexity canonical redhat debian mozilla CWE-119	7.5
2018-06-08	CVE-2018-4233	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in certain Apple products. network low complexity apple canonical CWE-119	8.8
2018-06-01	CVE-2016-1000338	Improper Verification of Cryptographic Signature vulnerability in multiple products In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. network low complexity bouncycastle redhat canonical netapp CWE-347	7.5
2018-05-31	CVE-2018-6552	Unspecified vulnerability in Apport Project Apport Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers. local low complexity apport-project canonical	7.2