Oval Definition:	oval:org.opensuse.security:def:127379
Revision Date: 2022-03-14 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.7.0 ESR (bsc#1196900): - CVE-2022-26383: Browser window spoof using fullscreen mode - CVE-2022-26384: iframe allow-scripts sandbox bypass - CVE-2022-26387: Time-of-check time-of-use bug when verifying add-on signatures - CVE-2022-26381: Use-after-free in text reflows - CVE-2022-26386: Temporary files downloaded to /tmp and accessible by other local users Family: unix Class: patch Status: Reference(s): 1196900 CVE-2022-26381 CVE-2022-26383 CVE-2022-26384 CVE-2022-26386 CVE-2022-26387 SUSE-SU-2022:0822-1 Platform(s): SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-91.7.0-112.95.1 is installed OR MozillaFirefox-devel-91.7.0-112.95.1 is installed OR MozillaFirefox-translations-common-91.7.0-112.95.1 is installed
BACK