EPSS
Percentile
74.2%
A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
bugzilla.redhat.com/show_bug.cgi?id=1537824
www.mozilla.org/en-US/security/advisories/mfsa2018-03/#CVE-2018-5104