Oval Definition:oval:org.opensuse.security:def:20175397
Revision Date:2022-05-20Version:1
Title:CVE-2017-5397
Description:

The cache directory on the local file system is set to be world writable. Firefox defaults to extracting libraries from this cache. This allows for the possibility of an installed malicious application or tools with write access to the file system to replace files used by Firefox with their own versions. This vulnerability affects Firefox < 51.0.3.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2017-5397
SUSE CVE-2017-5397
Platform(s):SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND MozillaFirefox is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND MozillaFirefox is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND MozillaFirefox is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND MozillaFirefox is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND MozillaFirefox is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • AND MozillaFirefox is not affected
    • BACK