OVAL Reference oval:org.opensuse.security:def:1050

Oval Definition:

oval:org.opensuse.security:def:1050

Revision Date:	2021-12-10	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:	unix	Class:	patch
Status:		Reference(s):	1193321 1193485 CVE-2013-0211 CVE-2015-2304 CVE-2015-8917 CVE-2015-8928 CVE-2015-8933 CVE-2015-8934 CVE-2016-1541 CVE-2016-1856 CVE-2016-1857 CVE-2016-4300 CVE-2016-4301 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2016-4692 CVE-2016-4743 CVE-2016-4809 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-7586 CVE-2016-7587 CVE-2016-7589 CVE-2016-7592 CVE-2016-7598 CVE-2016-7599 CVE-2016-7610 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2017-13788 CVE-2017-13798 CVE-2017-13803 CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 CVE-2017-13884 CVE-2017-13885 CVE-2017-14166 CVE-2017-14501 CVE-2017-14502 CVE-2017-14503 CVE-2017-16853 CVE-2017-16853 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2538 CVE-2017-2539 CVE-2017-5715 CVE-2017-5753 CVE-2017-7006 CVE-2017-7011 CVE-2017-7012 CVE-2017-7018 CVE-2017-7019 CVE-2017-7020 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7038 CVE-2017-7039 CVE-2017-7040 CVE-2017-7041 CVE-2017-7042 CVE-2017-7043 CVE-2017-7046 CVE-2017-7048 CVE-2017-7049 CVE-2017-7052 CVE-2017-7055 CVE-2017-7056 CVE-2017-7059 CVE-2017-7061 CVE-2017-7064 CVE-2017-7081 CVE-2017-7087 CVE-2017-7089 CVE-2017-7090 CVE-2017-7091 CVE-2017-7092 CVE-2017-7093 CVE-2017-7094 CVE-2017-7095 CVE-2017-7096 CVE-2017-7098 CVE-2017-7099 CVE-2017-7100 CVE-2017-7102 CVE-2017-7104 CVE-2017-7107 CVE-2017-7109 CVE-2017-7111 CVE-2017-7117 CVE-2017-7120 CVE-2017-7142 CVE-2017-7153 CVE-2017-7156 CVE-2017-7157 CVE-2017-7160 CVE-2017-7161 CVE-2017-7165 CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 CVE-2018-4088 CVE-2018-4096 CVE-2018-4101 CVE-2018-4113 CVE-2018-4114 CVE-2018-4117 CVE-2018-4118 CVE-2018-4119 CVE-2018-4120 CVE-2018-4122 CVE-2018-4125 CVE-2018-4127 CVE-2018-4128 CVE-2018-4129 CVE-2018-4133 CVE-2018-4146 CVE-2018-4161 CVE-2018-4162 CVE-2018-4163 CVE-2018-4165 CVE-2018-4200 CVE-2019-1000019 CVE-2019-1000020 CVE-2019-18408 CVE-2019-19221 CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 SUSE-SU-2021:3993-1
Platform(s):	openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 SUSE Package Hub for SUSE Linux Enterprise 15	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-neutron-2014.2.2.dev26-3 is installed OR openstack-neutron-dhcp-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-ha-tool-2014.2.2.dev26-3 is installed OR openstack-neutron-l3-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-lbaas-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-linuxbridge-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metadata-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metering-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-openvswitch-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-vpn-agent-2014.2.2.dev26-3 is installed OR python-neutron-2014.2.2.dev26-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND libzip2-0.11.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information libarchive-devel-3.4.2-2.24 is installed OR libarchive13-3.4.2-2.24 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information MozillaFirefox-91.4.0-152.9.1 is installed OR MozillaFirefox-devel-91.4.0-152.9.1 is installed OR MozillaFirefox-translations-common-91.4.0-152.9.1 is installed OR MozillaFirefox-translations-other-91.4.0-152.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.19 is installed OR dlm-kmp-default-4.12.14-25.19 is installed OR gfs2-kmp-default-4.12.14-25.19 is installed OR kernel-default-4.12.14-25.19 is installed OR ocfs2-kmp-default-4.12.14-25.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information LibVNCServer-0.9.10-4.6 is installed OR libvncserver0-0.9.10-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information typelib-1_0-JavaScriptCore-4_0-2.20.2-1 is installed OR typelib-1_0-WebKit2-4_0-2.20.2-1 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.20.2-1 is installed OR webkit2gtk3-devel-2.20.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-2-2 is installed OR kernel-livepatch-SLE15_Update_3-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information webkit-jsc-4-2.22.5-3.13 is installed OR webkit2gtk3-2.22.5-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libpng16-1.6.34-3.9 is installed OR libpng16-compat-devel-32bit-1.6.34-3.9 is installed OR libpng16-devel-32bit-1.6.34-3.9 is installed OR libpng16-tools-1.6.34-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.8 is installed OR kernel-azure-base-4.12.14-5.8 is installed OR kernel-azure-devel-4.12.14-5.8 is installed OR kernel-devel-azure-4.12.14-5.8 is installed OR kernel-source-azure-4.12.14-5.8 is installed OR kernel-syms-azure-4.12.14-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.5-4.5 is installed OR postgresql10-10.5-4.5 is installed OR postgresql10-contrib-10.5-4.5 is installed OR postgresql10-devel-10.5-4.5 is installed OR postgresql10-docs-10.5-4.5 is installed OR postgresql10-plperl-10.5-4.5 is installed OR postgresql10-plpython-10.5-4.5 is installed OR postgresql10-pltcl-10.5-4.5 is installed OR postgresql10-server-10.5-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libsaml-devel-2.6.1-1 is installed OR libsaml9-2.6.1-1 is installed OR opensaml-schemas-2.6.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.12 is installed OR php7-7.2.5-4.12 is installed OR php7-bcmath-7.2.5-4.12 is installed OR php7-bz2-7.2.5-4.12 is installed OR php7-calendar-7.2.5-4.12 is installed OR php7-ctype-7.2.5-4.12 is installed OR php7-curl-7.2.5-4.12 is installed OR php7-dba-7.2.5-4.12 is installed OR php7-devel-7.2.5-4.12 is installed OR php7-dom-7.2.5-4.12 is installed OR php7-enchant-7.2.5-4.12 is installed OR php7-exif-7.2.5-4.12 is installed OR php7-fastcgi-7.2.5-4.12 is installed OR php7-fileinfo-7.2.5-4.12 is installed OR php7-fpm-7.2.5-4.12 is installed OR php7-ftp-7.2.5-4.12 is installed OR php7-gd-7.2.5-4.12 is installed OR php7-gettext-7.2.5-4.12 is installed OR php7-gmp-7.2.5-4.12 is installed OR php7-iconv-7.2.5-4.12 is installed OR php7-intl-7.2.5-4.12 is installed OR php7-json-7.2.5-4.12 is installed OR php7-ldap-7.2.5-4.12 is installed OR php7-mbstring-7.2.5-4.12 is installed OR php7-mysql-7.2.5-4.12 is installed OR php7-odbc-7.2.5-4.12 is installed OR php7-opcache-7.2.5-4.12 is installed OR php7-openssl-7.2.5-4.12 is installed OR php7-pcntl-7.2.5-4.12 is installed OR php7-pdo-7.2.5-4.12 is installed OR php7-pear-7.2.5-4.12 is installed OR php7-pear-Archive_Tar-7.2.5-4.12 is installed OR php7-pgsql-7.2.5-4.12 is installed OR php7-phar-7.2.5-4.12 is installed OR php7-posix-7.2.5-4.12 is installed OR php7-shmop-7.2.5-4.12 is installed OR php7-snmp-7.2.5-4.12 is installed OR php7-soap-7.2.5-4.12 is installed OR php7-sockets-7.2.5-4.12 is installed OR php7-sqlite-7.2.5-4.12 is installed OR php7-sysvmsg-7.2.5-4.12 is installed OR php7-sysvsem-7.2.5-4.12 is installed OR php7-sysvshm-7.2.5-4.12 is installed OR php7-tokenizer-7.2.5-4.12 is installed OR php7-wddx-7.2.5-4.12 is installed OR php7-xmlreader-7.2.5-4.12 is installed OR php7-xmlrpc-7.2.5-4.12 is installed OR php7-xmlwriter-7.2.5-4.12 is installed OR php7-xsl-7.2.5-4.12 is installed OR php7-zip-7.2.5-4.12 is installed OR php7-zlib-7.2.5-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3.10 is installed OR accountsservice-lang-0.6.35-3.10 is installed OR libaccountsservice0-0.6.35-3.10 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND python-libxml2-2.9.4-27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-extra-4.12.14-25.13 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND Package Information okular-17.12.3-bp150.3.3 is installed OR okular-devel-17.12.3-bp150.3.3 is installed OR okular-lang-17.12.3-bp150.3.3 is installed

BACK