Oval Definition:	oval:org.opensuse.security:def:20185137
Revision Date: 2022-06-30 Version: 1 Title: CVE-2018-5137 Description: A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects Firefox < 59. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-5137 Mitre CVE-2018-5137 SUSE CVE-2018-5137 Platform(s): openSUSE Leap 15.0 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaFirefox-60.0-lp150.2 is installed AND MozillaFirefox is signed with openSUSE key OR MozillaFirefox-translations-common-60.0-lp150.2 is installed AND MozillaFirefox-translations-common is signed with openSUSE key OR MozillaFirefox-translations-other-60.0-lp150.2 is installed AND MozillaFirefox-translations-other is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information MozillaFirefox-92.0-1.2 is installed OR MozillaFirefox-branding-upstream-92.0-1.2 is installed OR MozillaFirefox-devel-92.0-1.2 is installed OR MozillaFirefox-translations-common-92.0-1.2 is installed OR MozillaFirefox-translations-other-92.0-1.2 is installed
BACK