Oval Definition:oval:org.opensuse.security:def:1063
Revision Date:2022-01-20Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

- CVE-2021-4140: Fixed iframe sandbox bypass with XSLT (bsc#1194547). - CVE-2022-22737: Fixed race condition when playing audio files (bsc#1194547). - CVE-2022-22738: Fixed heap-buffer-overflow in blendGaussianBlur (bsc#1194547). - CVE-2022-22739: Fixed missing throttling on external protocol launch dialog (bsc#1194547). - CVE-2022-22740: Fixed use-after-free of ChannelEventQueue::mOwner (bsc#1194547). - CVE-2022-22741: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22742: Fixed out-of-bounds memory access when inserting text in edit mode (bsc#1194547). - CVE-2022-22743: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22744: Fixed possible command injection via the 'Copy as curl' feature in DevTools (bsc#1194547). - CVE-2022-22745: Fixed leaking cross-origin URLs through securitypolicyviolation event (bsc#1194547). - CVE-2022-22746: Fixed calling into reportValidity could have lead to fullscreen window spoof (bsc#1194547). - CVE-2022-22747: Fixed crash when handling empty pkcs7 sequence(bsc#1194547). - CVE-2022-22748: Fixed spoofed origin on external protocol launch dialog (bsc#1194547). - CVE-2022-22751: Fixed memory safety bugs (bsc#1194547).
Family:unixClass:patch
Status:Reference(s):1194547
CVE-2014-3591
CVE-2015-0837
CVE-2015-5738
CVE-2015-7511
CVE-2016-6313
CVE-2017-0379
CVE-2017-14798
CVE-2017-14798
CVE-2017-5226
CVE-2017-7526
CVE-2018-0495
CVE-2019-12904
CVE-2019-13627
CVE-2021-4140
CVE-2022-22737
CVE-2022-22738
CVE-2022-22739
CVE-2022-22740
CVE-2022-22741
CVE-2022-22742
CVE-2022-22743
CVE-2022-22744
CVE-2022-22745
CVE-2022-22746
CVE-2022-22747
CVE-2022-22748
CVE-2022-22751
SUSE-SU-2022:0136-1
Platform(s):openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 12
SUSE Package Hub for SUSE Linux Enterprise 15
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • openssh-7.2p2-69 is installed
  • OR openssh-helpers-7.2p2-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND Package Information
  • libgcrypt-devel-1.8.2-8.36.1 is installed
  • OR libgcrypt20-1.8.2-8.36.1 is installed
  • OR libgcrypt20-32bit-1.8.2-8.36.1 is installed
  • OR libgcrypt20-hmac-1.8.2-8.36.1 is installed
  • OR libgcrypt20-hmac-32bit-1.8.2-8.36.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • MozillaFirefox-91.5.0-152.12.1 is installed
  • OR MozillaFirefox-devel-91.5.0-152.12.1 is installed
  • OR MozillaFirefox-translations-common-91.5.0-152.12.1 is installed
  • OR MozillaFirefox-translations-other-91.5.0-152.12.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND tiff-4.0.9-5.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND bubblewrap-0.3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR kernel-default-livepatch-4.12.14-25.3 is installed
  • OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ctdb-pcp-pmda-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR ctdb-tests-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR libdcerpc-samr0-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR libsamba-policy-python-devel-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR libsamba-policy0-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR libsamba-policy0-python3-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR libsmbclient0-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-ad-dc-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-ceph-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-client-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-doc-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-libs-python-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-libs-python3-32bit-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-test-4.9.5+git.176.375e1f05788-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • python-paramiko-2.4.2-3.3 is installed
  • OR python3-paramiko-2.4.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • rsyslog-8.33.1-3.3 is installed
  • OR rsyslog-module-gssapi-8.33.1-3.3 is installed
  • OR rsyslog-module-mysql-8.33.1-3.3 is installed
  • OR rsyslog-module-pgsql-8.33.1-3.3 is installed
  • OR rsyslog-module-relp-8.33.1-3.3 is installed
  • OR rsyslog-module-snmp-8.33.1-3.3 is installed
  • OR rsyslog-module-udpspoof-8.33.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • postgresql-contrib-10-6 is installed
  • OR postgresql-devel-10-6 is installed
  • OR postgresql-docs-10-6 is installed
  • OR postgresql-plperl-10-6 is installed
  • OR postgresql-plpython-10-6 is installed
  • OR postgresql-pltcl-10-6 is installed
  • OR postgresql-server-10-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND apache-commons-beanutils-1.9.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • avahi-0.6.31-20.59 is installed
  • OR avahi-lang-0.6.31-20.59 is installed
  • OR avahi-utils-0.6.31-20.59 is installed
  • OR libavahi-client3-0.6.31-20.59 is installed
  • OR libavahi-client3-32bit-0.6.31-20.59 is installed
  • OR libavahi-common3-0.6.31-20.59 is installed
  • OR libavahi-common3-32bit-0.6.31-20.59 is installed
  • OR libavahi-core7-0.6.31-20.59 is installed
  • OR libdns_sd-0.6.31-20.59 is installed
  • OR libdns_sd-32bit-0.6.31-20.59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND ruby-2.1-1.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND enigmail-2.0.7-3.7 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • irssi-0.8.20-9 is installed
  • OR irssi-devel-0.8.20-9 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • GraphicsMagick-1.3.29-bp150.2.6 is installed
  • OR GraphicsMagick-devel-1.3.29-bp150.2.6 is installed
  • OR libGraphicsMagick++-Q16-12-1.3.29-bp150.2.6 is installed
  • OR libGraphicsMagick++-devel-1.3.29-bp150.2.6 is installed
  • OR libGraphicsMagick-Q16-3-1.3.29-bp150.2.6 is installed
  • OR libGraphicsMagick3-config-1.3.29-bp150.2.6 is installed
  • OR libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.6 is installed
  • OR perl-GraphicsMagick-1.3.29-bp150.2.6 is installed
    • BACK