CVE-2019-5785
published 2019-06-27CVE-2019-5785: Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a…
PriorityP428medium6.5CVSS 3.0
AVNACLPRNUIRSUCNINAH
EPSS
1.19%
64.2th percentile
Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 65.0.1-1 (sid) | firefox 65.0.1-1 (sid) |
| debian | firefox-esr | < firefox 65.0.1-1 (sid) | firefox 65.0.1-1 (sid) |
| debian | thunderbird | < firefox 65.0.1-1 (sid) | firefox 65.0.1-1 (sid) |
| chrome | < 72.0.3626.81 | 72.0.3626.81 | |
| chrome | >= unspecified < 72.0.3626.81 | 72.0.3626.81 | |
| mozilla | thunderbird | >= 0 < 1:60.5.1-1 | 1:60.5.1-1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1-1 | 1:60.5.1-1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1-1 | 1:60.5.1-1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1-1 | 1:60.5.1-1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1+build2-0ubuntu0.14.04.1 | 1:60.5.1+build2-0ubuntu0.14.04.1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1+build2-0ubuntu0.16.04.1 | 1:60.5.1+build2-0ubuntu0.16.04.1 |
| mozilla | thunderbird | >= 0 < 1:60.5.1+build2-0ubuntu0.18.04.1 | 1:60.5.1+build2-0ubuntu0.18.04.1 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv6.5MEDIUM
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
vendor_ubuntu5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2019-02-26
CVE-2018-18356 Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Multiple security issues were discovered in Firefox. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, bypass same
origin protections, or execute arbitrary code.
Instructions: After a standard system update you need to restart Firefox to make
all the necessary changes.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2019-02-26·CVSS 5.5
CVE-2016-5824 [MEDIUM] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
A use-after-free was discovered in libical. If a user were tricked in to
opening a specially crafted ICS calendar file, an attacker could
potentially exploit this to cause a denial of service. (CVE-2016-5824)
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted message, an attacker could
potentially exploit these to cause a denial of service, or execute
arbitrary code. (CVE-2018-18356, CVE-2018-18500, CVE-2019-5785)
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
g
Red Hat
mozilla: Integer overflow in Skia
vendor_redhat·2019-02-12·CVSS 6.5
CVE-2019-5785 [MEDIUM] CWE-190 mozilla: Integer overflow in Skia
mozilla: Integer overflow in Skia
Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
Package: firefox (Red Hat Enterprise Linux 8) - Not affected
Debian
CVE-2019-5785: firefox - Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 ...
vendor_debian·2019·CVSS 6.5
CVE-2019-5785 [MEDIUM] CVE-2019-5785: firefox - Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 ...
Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
Scope: local
sid: resolved (fixed in 65.0.1-1)
GHSA
GHSA-qvc8-jrj2-3cc3: Incorrect convexity calculations in Skia in Google Chrome prior to 72
ghsa_unreviewed·2022-05-24
CVE-2019-5785 [MEDIUM] CWE-787 GHSA-qvc8-jrj2-3cc3: Incorrect convexity calculations in Skia in Google Chrome prior to 72
Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
OSV
CVE-2019-5785: Incorrect convexity calculations in Skia in Google Chrome prior to 72
osv·2019-06-27·CVSS 6.5
CVE-2019-5785 [MEDIUM] CVE-2019-5785: Incorrect convexity calculations in Skia in Google Chrome prior to 72
Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
OSV
thunderbird vulnerabilities
osv·2019-02-26·CVSS 5.5
CVE-2016-5824 [MEDIUM] thunderbird vulnerabilities
thunderbird vulnerabilities
A use-after-free was discovered in libical. If a user were tricked in to
opening a specially crafted ICS calendar file, an attacker could
potentially exploit this to cause a denial of service. (CVE-2016-5824)
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted message, an attacker could
potentially exploit these to cause a denial of service, or execute
arbitrary code. (CVE-2018-18356, CVE-2018-18500, CVE-2019-5785)
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
gain additional privileges by escaping the sandbox, or execute arbitr
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2019-5785 thunderbird: mozilla: Integer overflow in Skia [fedora-all]
bugzilla·2019-02-13·CVSS 6.5
CVE-2019-5785 [MEDIUM] CVE-2019-5785 thunderbird: mozilla: Integer overflow in Skia [fedora-all]
CVE-2019-5785 thunderbird: mozilla: Integer overflow in Skia [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of
Bugzilla
CVE-2019-5785 mozilla: Integer overflow in Skia
bugzilla·2019-02-13·CVSS 6.5
CVE-2019-5785 [MEDIUM] CVE-2019-5785 mozilla: Integer overflow in Skia
CVE-2019-5785 mozilla: Integer overflow in Skia
An integer overflow vulnerability in the Skia library can occur after specific transform operations, leading to a potentially exploitable crash.
Upstream Bug:
https://bugzilla.mozilla.org/show_bug.cgi?id=1525433
External References:
https://www.mozilla.org/en-US/security/advisories/mfsa2019-04/#CVE-2019-5785
https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2019-5785
https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/#CVE-2019-5785
Discussion:
Created firefox tracking bugs for this issue:
Affects: fedora-all [bug 1676994]
Created thunderbird tracking bugs for this issue:
Affects: fedora-all [bug 1676995]
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2
Bugzilla
CVE-2019-5785 firefox: mozilla: Integer overflow in Skia [fedora-all]
bugzilla·2019-02-13·CVSS 6.5
CVE-2019-5785 [MEDIUM] CVE-2019-5785 firefox: mozilla: Integer overflow in Skia [fedora-all]
CVE-2019-5785 firefox: mozilla: Integer overflow in Skia [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedo
2019-06-27
Published