WebRTC can use a "WrappedI420Buffer" pixel buffer but the owning image object can be freed while it is still in use. This can result in the WebRTC encoder using uninitialized memory, leading to a potentially exploitable crash. This vulnerability affects Firefox < 60.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2018-06-11T21:00:00
Updated: 2024-08-05T05:26:46.989Z
Reserved: 2018-01-03T00:00:00
Link: CVE-2018-5160
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-06-11T21:29:15.373
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-5160
Redhat