| Revision Date: | 2020-12-02 | Version: | 1 |
| Title: | Security update for MozillaFirefox (Important) |
| Description: |
This update for MozillaFirefox, mozilla-nss fixes the following issues:
MozillaFirefox to version ESR 60.8:
- CVE-2019-9811: Sandbox escape via installation of malicious language pack (bsc#1140868). - CVE-2019-11711: Script injection within domain through inner window reuse (bsc#1140868). - CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects (bsc#1140868). - CVE-2019-11713: Use-after-free with HTTP/2 cached stream (bsc#1140868). - CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault (bsc#1140868). - CVE-2019-11715: HTML parsing error can contribute to content XSS (bsc#1140868). - CVE-2019-11717: Caret character improperly escaped in origins (bsc#1140868). - CVE-2019-11719: Out-of-bounds read when importing curve25519 private key (bsc#1140868). - CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin (bsc#1140868). - CVE-2019-11709: Multiple Memory safety bugs fixed (bsc#1140868).
mozilla-nss to version 3.44.1:
Added IPSEC IKE support to softoken * Many new FIPS test cases
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1013708
1013712
1013893
1015171
1051510
1071995
1088047
1094555
1098633
1106383
1106751
1109137
1114209
1114279
1114832
1118897
1118898
1118899
1119532
1120423
1121397
1121967
1122292
1122299
1123013
1124167
1127155
1128376
1128432
1128746
1128829
1128902
1128910
1128935
1128937
1128963
1130746
1131645
1132154
1132390
1133100
1133384
1133401
1133738
1134068
1134303
1134395
1135296
1135556
1135642
1136157
1136598
1136922
1136935
1137103
1137194
1137429
1137625
1137728
1137825
1137884
1137995
1137996
1137998
1137999
1138000
1138002
1138003
1138005
1138006
1138007
1138008
1138009
1138010
1138011
1138012
1138013
1138014
1138015
1138016
1138017
1138018
1138019
1138291
1138293
1138374
1138375
1138589
1138719
1139771
1139782
1139865
1140133
1140328
1140405
1140424
1140428
1140575
1140577
1140637
1140658
1140715
1140719
1140726
1140727
1140728
1140814
1140868
1141334
1141780
1141782
1141783
1141785
1141787
1141789
1142721
1142743
1145575
1145738
1145739
1145740
1145741
1145742
1147021
1148931
CVE-2016-1000031
CVE-2016-9797
CVE-2016-9798
CVE-2016-9802
CVE-2016-9917
CVE-2018-11212
CVE-2018-11782
CVE-2018-16871
CVE-2018-16873
CVE-2018-16874
CVE-2018-16875
CVE-2018-20836
CVE-2019-0203
CVE-2019-10081
CVE-2019-10082
CVE-2019-10092
CVE-2019-10097
CVE-2019-10098
CVE-2019-1010319
CVE-2019-10126
CVE-2019-10638
CVE-2019-10639
CVE-2019-11498
CVE-2019-11599
CVE-2019-11709
CVE-2019-11709
CVE-2019-11711
CVE-2019-11711
CVE-2019-11712
CVE-2019-11712
CVE-2019-11713
CVE-2019-11713
CVE-2019-11715
CVE-2019-11715
CVE-2019-11717
CVE-2019-11717
CVE-2019-11719
CVE-2019-11719
CVE-2019-11729
CVE-2019-11729
CVE-2019-11730
CVE-2019-11730
CVE-2019-11771
CVE-2019-11772
CVE-2019-11775
CVE-2019-12380
CVE-2019-12387
CVE-2019-12456
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-2449
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2786
CVE-2019-2816
CVE-2019-4473
CVE-2019-5736
CVE-2019-6486
CVE-2019-7317
CVE-2019-8595
CVE-2019-8607
CVE-2019-8615
CVE-2019-8644
CVE-2019-8649
CVE-2019-8658
CVE-2019-8666
CVE-2019-8669
CVE-2019-8671
CVE-2019-8672
CVE-2019-8673
CVE-2019-8676
CVE-2019-8677
CVE-2019-8678
CVE-2019-8679
CVE-2019-8680
CVE-2019-8681
CVE-2019-8683
CVE-2019-8684
CVE-2019-8686
CVE-2019-8687
CVE-2019-8688
CVE-2019-8689
CVE-2019-8690
CVE-2019-9517
CVE-2019-9704
CVE-2019-9705
CVE-2019-9811
CVE-2019-9811
SUSE-SU-2019:1212-2
SUSE-SU-2019:1234-2
SUSE-SU-2019:1353-2
SUSE-SU-2019:1389-2
SUSE-SU-2019:1731-1
SUSE-SU-2019:1829-1
SUSE-SU-2019:1869-1
SUSE-SU-2019:2031-1
SUSE-SU-2019:2191-1
SUSE-SU-2019:2237-1
SUSE-SU-2019:2291-1
SUSE-SU-2019:2428-1
|
| Platform(s): | SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information
ruby2.1-rubygem-chef-10.32.2-3 is installed
OR rubygem-chef-10.32.2-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND cifs-utils-6.4-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND bogofilter-1.2.4-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
qemu-2.6.2-41.22 is installed
OR qemu-block-curl-2.6.2-41.22 is installed
OR qemu-ipxe-1.0.0-41.22 is installed
OR qemu-kvm-2.6.2-41.22 is installed
OR qemu-seabios-1.9.1-41.22 is installed
OR qemu-sgabios-8-41.22 is installed
OR qemu-tools-2.6.2-41.22 is installed
OR qemu-vgabios-1.9.1-41.22 is installed
OR qemu-x86-2.6.2-41.22 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-36 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND ucode-intel-20180807a-13.35 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND haproxy-1.6.5-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND Package Information
cluster-md-kmp-default-4.4.73-5 is installed
OR dlm-kmp-default-4.4.73-5 is installed
OR gfs2-kmp-default-4.4.73-5 is installed
OR ocfs2-kmp-default-4.4.73-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP4 is installed
AND haproxy-1.6.11-10 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
AND Package Information
nmap-7.70-3.5 is installed
OR nping-7.70-3.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
AND Package Information
python-SQLAlchemy-1.2.14-6.3 is installed
OR python2-SQLAlchemy-1.2.14-6.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
AND Package Information
puppet-3.6.2-3 is installed
OR puppet-server-3.6.2-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
AND Package Information
MozillaFirefox-60.8.0-3.51 is installed
OR MozillaFirefox-devel-60.8.0-3.51 is installed
OR MozillaFirefox-translations-common-60.8.0-3.51 is installed
OR MozillaFirefox-translations-other-60.8.0-3.51 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
AND Package Information
libnss_slurm2-20.02.3-3.8 is installed
OR libpmi0_20_02-20.02.3-3.8 is installed
OR libslurm35-20.02.3-3.8 is installed
OR perl-slurm_20_02-20.02.3-3.8 is installed
OR slurm_20_02-20.02.3-3.8 is installed
OR slurm_20_02-auth-none-20.02.3-3.8 is installed
OR slurm_20_02-config-20.02.3-3.8 is installed
OR slurm_20_02-config-man-20.02.3-3.8 is installed
OR slurm_20_02-devel-20.02.3-3.8 is installed
OR slurm_20_02-doc-20.02.3-3.8 is installed
OR slurm_20_02-lua-20.02.3-3.8 is installed
OR slurm_20_02-munge-20.02.3-3.8 is installed
OR slurm_20_02-node-20.02.3-3.8 is installed
OR slurm_20_02-pam_slurm-20.02.3-3.8 is installed
OR slurm_20_02-plugins-20.02.3-3.8 is installed
OR slurm_20_02-slurmdbd-20.02.3-3.8 is installed
OR slurm_20_02-sql-20.02.3-3.8 is installed
OR slurm_20_02-sview-20.02.3-3.8 is installed
OR slurm_20_02-torque-20.02.3-3.8 is installed
OR slurm_20_02-webdoc-20.02.3-3.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 is installed
AND Package Information
java-1_8_0-openjdk-1.8.0.171-3.3 is installed
OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed
OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed
OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
AND Package Information
kernel-default-4.12.14-197.7 is installed
OR reiserfs-kmp-default-4.12.14-197.7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 is installed
AND Package Information
kernel-livepatch-4_12_14-23-default-3-7 is installed
OR kernel-livepatch-SLE15_Update_0-3-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND Package Information
kernel-livepatch-4_12_14-195-default-2-4 is installed
OR kernel-livepatch-SLE15-SP1_Update_0-2-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
AND Package Information
jakarta-commons-fileupload-1.1.1-4.3 is installed
OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
AND Package Information
curl-7.66.0-4.3 is installed
OR curl-mini-7.66.0-4.3 is installed
OR libcurl-devel-32bit-7.66.0-4.3 is installed
OR libcurl-mini-devel-7.66.0-4.3 is installed
OR libcurl4-mini-7.66.0-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 15 is installed
AND python-azure-agent-2.2.36-7.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
AND Package Information
rmt-server-2.3.1-3.3 is installed
OR rmt-server-pubcloud-2.3.1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
AND Package Information
libsamba-policy0-4.9.5+git.224.86a8e66adea-3.18 is installed
OR samba-4.9.5+git.224.86a8e66adea-3.18 is installed
OR samba-ad-dc-4.9.5+git.224.86a8e66adea-3.18 is installed
OR samba-dsdb-modules-4.9.5+git.224.86a8e66adea-3.18 is installed
OR samba-libs-python-4.9.5+git.224.86a8e66adea-3.18 is installed
OR samba-python-4.9.5+git.224.86a8e66adea-3.18 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 is installed
AND Package Information
rsyslog-8.33.1-3.3 is installed
OR rsyslog-module-gssapi-8.33.1-3.3 is installed
OR rsyslog-module-mysql-8.33.1-3.3 is installed
OR rsyslog-module-pgsql-8.33.1-3.3 is installed
OR rsyslog-module-relp-8.33.1-3.3 is installed
OR rsyslog-module-snmp-8.33.1-3.3 is installed
OR rsyslog-module-udpspoof-8.33.1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
subversion-1.10.6-3.6 is installed
OR subversion-server-1.10.6-3.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 12 is installed
AND Package Information
apache2-mod_php7-7.0.7-15 is installed
OR php7-7.0.7-15 is installed
OR php7-bcmath-7.0.7-15 is installed
OR php7-bz2-7.0.7-15 is installed
OR php7-calendar-7.0.7-15 is installed
OR php7-ctype-7.0.7-15 is installed
OR php7-curl-7.0.7-15 is installed
OR php7-dba-7.0.7-15 is installed
OR php7-dom-7.0.7-15 is installed
OR php7-enchant-7.0.7-15 is installed
OR php7-exif-7.0.7-15 is installed
OR php7-fastcgi-7.0.7-15 is installed
OR php7-fileinfo-7.0.7-15 is installed
OR php7-fpm-7.0.7-15 is installed
OR php7-ftp-7.0.7-15 is installed
OR php7-gd-7.0.7-15 is installed
OR php7-gettext-7.0.7-15 is installed
OR php7-gmp-7.0.7-15 is installed
OR php7-iconv-7.0.7-15 is installed
OR php7-imap-7.0.7-15 is installed
OR php7-intl-7.0.7-15 is installed
OR php7-json-7.0.7-15 is installed
OR php7-ldap-7.0.7-15 is installed
OR php7-mbstring-7.0.7-15 is installed
OR php7-mcrypt-7.0.7-15 is installed
OR php7-mysql-7.0.7-15 is installed
OR php7-odbc-7.0.7-15 is installed
OR php7-opcache-7.0.7-15 is installed
OR php7-openssl-7.0.7-15 is installed
OR php7-pcntl-7.0.7-15 is installed
OR php7-pdo-7.0.7-15 is installed
OR php7-pear-7.0.7-15 is installed
OR php7-pear-Archive_Tar-7.0.7-15 is installed
OR php7-pgsql-7.0.7-15 is installed
OR php7-phar-7.0.7-15 is installed
OR php7-posix-7.0.7-15 is installed
OR php7-pspell-7.0.7-15 is installed
OR php7-shmop-7.0.7-15 is installed
OR php7-snmp-7.0.7-15 is installed
OR php7-soap-7.0.7-15 is installed
OR php7-sockets-7.0.7-15 is installed
OR php7-sqlite-7.0.7-15 is installed
OR php7-sysvmsg-7.0.7-15 is installed
OR php7-sysvsem-7.0.7-15 is installed
OR php7-sysvshm-7.0.7-15 is installed
OR php7-tokenizer-7.0.7-15 is installed
OR php7-wddx-7.0.7-15 is installed
OR php7-xmlreader-7.0.7-15 is installed
OR php7-xmlrpc-7.0.7-15 is installed
OR php7-xmlwriter-7.0.7-15 is installed
OR php7-xsl-7.0.7-15 is installed
OR php7-zip-7.0.7-15 is installed
OR php7-zlib-7.0.7-15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-1 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-9 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
sysvinit-tools-2.88+-96 is installed
OR whois-5.1.1-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
alsa-1.0.27.2-15 is installed
OR alsa-docs-1.0.27.2-15 is installed
OR libasound2-1.0.27.2-15 is installed
OR libasound2-32bit-1.0.27.2-15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 is installed
AND pam-devel-1.1.8-11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND Package Information
gdk-pixbuf-2.30.6-7.2 is installed
OR gdk-pixbuf-devel-2.30.6-7.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND libreoffice-sdk-5.1.5.2-29.4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
kernel-default-4.12.14-25.28 is installed
OR kernel-default-extra-4.12.14-25.28 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
libixion-0.14.1-4.3 is installed
OR libixion-0_14-0-0.14.1-4.3 is installed
OR liborcus-0.14.1-3.3 is installed
OR liborcus-0_14-0-0.14.1-3.3 is installed
OR liborcus-devel-0.14.1-3.3 is installed
OR myspell-af_ZA-20190423-3.9 is installed
OR myspell-ar-20190423-3.9 is installed
OR myspell-bg_BG-20190423-3.9 is installed
OR myspell-bn_BD-20190423-3.9 is installed
OR myspell-br_FR-20190423-3.9 is installed
OR myspell-ca-20190423-3.9 is installed
OR myspell-cs_CZ-20190423-3.9 is installed
OR myspell-da_DK-20190423-3.9 is installed
OR myspell-dictionaries-20190423-3.9 is installed
OR myspell-el_GR-20190423-3.9 is installed
OR myspell-et_EE-20190423-3.9 is installed
OR myspell-fr_FR-20190423-3.9 is installed
OR myspell-gl-20190423-3.9 is installed
OR myspell-gu_IN-20190423-3.9 is installed
OR myspell-he_IL-20190423-3.9 is installed
OR myspell-hi_IN-20190423-3.9 is installed
OR myspell-hr_HR-20190423-3.9 is installed
OR myspell-it_IT-20190423-3.9 is installed
OR myspell-lt_LT-20190423-3.9 is installed
OR myspell-lv_LV-20190423-3.9 is installed
OR myspell-nl_NL-20190423-3.9 is installed
OR myspell-nn_NO-20190423-3.9 is installed
OR myspell-pl_PL-20190423-3.9 is installed
OR myspell-pt_PT-20190423-3.9 is installed
OR myspell-si_LK-20190423-3.9 is installed
OR myspell-sk_SK-20190423-3.9 is installed
OR myspell-sl_SI-20190423-3.9 is installed
OR myspell-sr-20190423-3.9 is installed
OR myspell-sv_SE-20190423-3.9 is installed
OR myspell-te_IN-20190423-3.9 is installed
OR myspell-th_TH-20190423-3.9 is installed
OR myspell-tr_TR-20190423-3.9 is installed
OR myspell-uk_UA-20190423-3.9 is installed
OR myspell-zu_ZA-20190423-3.9 is installed
|