Oval Definition:	oval:org.opensuse.security:def:20185105
Revision Date: 2022-06-30 Version: 1 Title: CVE-2018-5105 Description: WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox < 58. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-5105 Mitre CVE-2018-5105 SUSE CVE-2018-5105 Platform(s): openSUSE Leap 15.0 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaFirefox-60.0-lp150.2 is installed AND MozillaFirefox is signed with openSUSE key OR MozillaFirefox-translations-common-60.0-lp150.2 is installed AND MozillaFirefox-translations-common is signed with openSUSE key OR MozillaFirefox-translations-other-60.0-lp150.2 is installed AND MozillaFirefox-translations-other is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information MozillaFirefox-92.0-1.2 is installed OR MozillaFirefox-branding-upstream-92.0-1.2 is installed OR MozillaFirefox-devel-92.0-1.2 is installed OR MozillaFirefox-translations-common-92.0-1.2 is installed OR MozillaFirefox-translations-other-92.0-1.2 is installed
BACK