OVAL Reference oval:org.opensuse.security:def:1087

Oval Definition:

oval:org.opensuse.security:def:1087

Revision Date:	2022-03-03	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.6.0 ESR / MFSA 2022-05 (bsc#1195682) - CVE-2022-22753: Privilege Escalation to SYSTEM on Windows via Maintenance Service - CVE-2022-22754: Extensions could have bypassed permission confirmation during update - CVE-2022-22756: Drag and dropping an image could have resulted in the dropped object being an executable - CVE-2022-22759: Sandboxed iframes could have executed script if the parent appended elements - CVE-2022-22760: Cross-Origin responses could be distinguished between script and non-script content-types - CVE-2022-22761: frame-ancestors Content Security Policy directive was not enforced for framed extension pages - CVE-2022-22763: Script Execution during invalid object state - CVE-2022-22764: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6 Firefox Extended Support Release 91.5.1 ESR (bsc#1195230) - Fixed an issue that allowed unexpected data to be submitted in some of our search telemetry
Family:	unix	Class:	patch
Status:		Reference(s):	1195230 1195682 CVE-2013-1976 CVE-2013-1976 CVE-2014-0050 CVE-2014-0050 CVE-2015-5174 CVE-2015-5174 CVE-2015-5345 CVE-2015-5345 CVE-2015-5346 CVE-2015-5346 CVE-2015-5351 CVE-2015-5351 CVE-2016-0706 CVE-2016-0706 CVE-2016-0714 CVE-2016-0714 CVE-2016-0763 CVE-2016-0763 CVE-2016-3092 CVE-2016-3092 CVE-2016-8745 CVE-2016-8745 CVE-2016-9843 CVE-2017-12617 CVE-2017-12617 CVE-2017-2626 CVE-2017-5647 CVE-2017-5647 CVE-2017-5648 CVE-2017-5648 CVE-2017-5664 CVE-2017-5664 CVE-2022-22753 CVE-2022-22754 CVE-2022-22756 CVE-2022-22759 CVE-2022-22760 CVE-2022-22761 CVE-2022-22763 CVE-2022-22764 SUSE-SU-2022:0696-1
Platform(s):	openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 SUSE Package Hub for SUSE Linux Enterprise 15	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND python-libxml2-2.9.4-45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information libminizip1-1.2.11-3.21.1 is installed OR libz1-1.2.11-3.21.1 is installed OR libz1-32bit-1.2.11-3.21.1 is installed OR minizip-devel-1.2.11-3.21.1 is installed OR zlib-devel-1.2.11-3.21.1 is installed OR zlib-devel-static-1.2.11-3.21.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information MozillaFirefox-91.6.0-152.15.1 is installed OR MozillaFirefox-devel-91.6.0-152.15.1 is installed OR MozillaFirefox-translations-common-91.6.0-152.15.1 is installed OR MozillaFirefox-translations-other-91.6.0-152.15.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libICE6-32bit-1.0.9-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.191-3.13 is installed OR java-1_8_0-openjdk-demo-1.8.0.191-3.13 is installed OR java-1_8_0-openjdk-devel-1.8.0.191-3.13 is installed OR java-1_8_0-openjdk-headless-1.8.0.191-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-3-2 is installed OR kernel-livepatch-SLE15_Update_1-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information dtb-aarch64-4.12.14-197.10 is installed OR dtb-al-4.12.14-197.10 is installed OR dtb-allwinner-4.12.14-197.10 is installed OR dtb-altera-4.12.14-197.10 is installed OR dtb-amd-4.12.14-197.10 is installed OR dtb-amlogic-4.12.14-197.10 is installed OR dtb-apm-4.12.14-197.10 is installed OR dtb-arm-4.12.14-197.10 is installed OR dtb-broadcom-4.12.14-197.10 is installed OR dtb-cavium-4.12.14-197.10 is installed OR dtb-exynos-4.12.14-197.10 is installed OR dtb-freescale-4.12.14-197.10 is installed OR dtb-hisilicon-4.12.14-197.10 is installed OR dtb-lg-4.12.14-197.10 is installed OR dtb-marvell-4.12.14-197.10 is installed OR dtb-mediatek-4.12.14-197.10 is installed OR dtb-nvidia-4.12.14-197.10 is installed OR dtb-qcom-4.12.14-197.10 is installed OR dtb-renesas-4.12.14-197.10 is installed OR dtb-rockchip-4.12.14-197.10 is installed OR dtb-socionext-4.12.14-197.10 is installed OR dtb-sprd-4.12.14-197.10 is installed OR dtb-xilinx-4.12.14-197.10 is installed OR dtb-zte-4.12.14-197.10 is installed OR kernel-debug-4.12.14-197.10 is installed OR kernel-debug-base-4.12.14-197.10 is installed OR kernel-debug-devel-4.12.14-197.10 is installed OR kernel-debug-livepatch-devel-4.12.14-197.10 is installed OR kernel-default-4.12.14-197.10 is installed OR kernel-default-livepatch-4.12.14-197.10 is installed OR kernel-docs-4.12.14-197.10 is installed OR kernel-docs-html-4.12.14-197.10 is installed OR kernel-kvmsmall-4.12.14-197.10 is installed OR kernel-kvmsmall-base-4.12.14-197.10 is installed OR kernel-kvmsmall-devel-4.12.14-197.10 is installed OR kernel-kvmsmall-livepatch-devel-4.12.14-197.10 is installed OR kernel-obs-qa-4.12.14-197.10 is installed OR kernel-source-4.12.14-197.10 is installed OR kernel-source-vanilla-4.12.14-197.10 is installed OR kernel-vanilla-4.12.14-197.10 is installed OR kernel-vanilla-base-4.12.14-197.10 is installed OR kernel-vanilla-devel-4.12.14-197.10 is installed OR kernel-vanilla-livepatch-devel-4.12.14-197.10 is installed OR kernel-zfcpdump-4.12.14-197.10 is installed OR kernel-zfcpdump-man-4.12.14-197.10 is installed OR kselftests-kmp-default-4.12.14-197.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.8 is installed OR kernel-azure-base-4.12.14-5.8 is installed OR kernel-azure-devel-4.12.14-5.8 is installed OR kernel-devel-azure-4.12.14-5.8 is installed OR kernel-source-azure-4.12.14-5.8 is installed OR kernel-syms-azure-4.12.14-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information util-linux-systemd-2.31.1-9.3 is installed OR uuidd-2.31.1-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.5-1 is installed OR tomcat-admin-webapps-9.0.5-1 is installed OR tomcat-el-3_0-api-9.0.5-1 is installed OR tomcat-jsp-2_3-api-9.0.5-1 is installed OR tomcat-lib-9.0.5-1 is installed OR tomcat-servlet-4_0-api-9.0.5-1 is installed OR tomcat-webapps-9.0.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND dnsmasq-2.71-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND vsftpd-3.0.2-31.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information colord-1.4.2-1 is installed OR colord-gtk-lang-0.1.26-1 is installed OR colord-lang-1.4.2-1 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND jhead-3.00-bp150.3.7 is installed

BACK