Number: AV18-050
Date: 27 March 2018
Purpose
The purpose of this advisory is to bring attention to a recently released Mozilla security update.
Assessment
Mozilla has released security updates to address the “Use-after-free in compositor” vulnerability in Firefox and Firefox ESR.
Affected Versions:
- Firefox versions prior to 59.0.2
- Firefox ESR versions prior to 52.7.3
CVE Reference: CVE-2018-5148
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References: