Firefox ESR

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-11	CVE-2018-5095	Use of Uninitialized Resource vulnerability in multiple products An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. network low complexity debian redhat mozilla canonical CWE-908	7.5
2018-06-11	CVE-2018-5091	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. network low complexity debian redhat mozilla canonical CWE-416	7.5
2018-06-11	CVE-2018-5089	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. network low complexity canonical redhat debian mozilla CWE-119	7.5
2018-06-11	CVE-2017-7845	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. network mozilla microsoft CWE-119 critical	9.3
2018-06-11	CVE-2017-7843	Information Exposure vulnerability in multiple products When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user uniquely. network low complexity debian mozilla redhat CWE-200	5.0
2018-06-11	CVE-2017-7830	The Resource Timing API incorrectly revealed navigations in cross-origin iframes. network debian mozilla redhat	4.3
2018-06-11	CVE-2017-7828	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. network low complexity debian redhat mozilla CWE-416	7.5
2018-06-11	CVE-2017-7826	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. network low complexity debian redhat canonical mozilla CWE-119 critical	10.0
2018-06-11	CVE-2017-7825	Improper Input Validation vulnerability in multiple products Several fonts on OS X display some Tibetan and Arabic characters as whitespace. network low complexity debian mozilla apple CWE-20	5.0
2018-06-11	CVE-2017-7824	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. network low complexity redhat debian mozilla CWE-119	7.5