VDB
GCVE-110-MAGEIA-2018-99
GCVE-110-MAGEIA-2018-99
Advisory Published
Multiple flaws were found in the processing of malformed web content. A
web page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user
running Firefox (CVE-2018-5089, CVE-2018-5091, CVE-2018-5095,
CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099,
CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117).
To mitigate timing-based side-channel attacks similar to "Spectre" and
"Meltdown", the resolution of performance.now() has been reduced from
5μs to 20μs.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | knewstuff | 0 (affected), 5.42.0-1.3.mga6 (unaffected) | — |
| Mageia | nss | 0 (affected), 3.28.6-1.3.mga5 (unaffected), 0 (affected), 3.28.6-1.3.mga5 (unaffected) | — |
| Mageia | kbookmarks | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | rootcerts | 0 (affected), 20180104.00-1.mga5 (unaffected), 0 (affected), 20180104.00-1.mga5 (unaffected) | — |
| Mageia | firefox-l10n | 0 (affected), 52.6.0-1.mga5 (unaffected), 0 (affected), 52.6.0-1.mga5 (unaffected) | — |
| Mageia | kcmutils | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | nspr | 0 (affected), 4.18-1.mga5 (unaffected), 0 (affected), 4.18-1.mga5 (unaffected) | — |
| Mageia | kitemviews | 5.42.0-1.2.mga6 (unaffected), 0 (affected) | — |
| Mageia | kcompletion | 0 (affected), 5.42.0-2.2.mga6 (unaffected) | — |
| Mageia | knotifyconfig | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | kunitconversion | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | firefox | 0 (affected), 52.6.0-1.mga5 (unaffected), 52.6.0-1.mga5 (unaffected), 0 (affected) | — |
| Mageia | ktextwidgets | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | kdnssd | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | kpty | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
| Mageia | kxmlrpcclient | 5.42.0-1.2.mga6 (unaffected), 0 (affected) | — |
| Mageia | kjobwidgets | 0 (affected), 5.42.0-1.2.mga6 (unaffected) | — |
References
Updated KDE packages fix conflicts
advisory
Browse GCVE Records
73,040 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.