Oval Definition:oval:org.opensuse.security:def:2810
Revision Date:2020-12-02Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox to 68.1 fixes the following issues:

Security issues fixed:

- CVE-2019-9811: Fixed a sandbox escape via installation of malicious language pack. (bsc#1140868) - CVE-2019-9812: Fixed a sandbox escape through Firefox Sync. (bsc#1149294) - CVE-2019-11710: Fixed several memory safety bugs. (bsc#1140868) - CVE-2019-11714: Fixed a potentially exploitable crash in Necko. (bsc#1140868) - CVE-2019-11716: Fixed a sandbox bypass. (bsc#1140868) - CVE-2019-11718: Fixed inadequate sanitation in the Activity Stream component. (bsc#1140868) - CVE-2019-11720: Fixed a character encoding XSS vulnerability. (bsc#1140868) - CVE-2019-11721: Fixed a homograph domain spoofing issue through unicode latin 'kra' character. (bsc#1140868) - CVE-2019-11723: Fixed a cookie leakage during add-on fetching across private browsing boundaries. (bsc#1140868) - CVE-2019-11724: Fixed an outdated permission, granting access to retired site input.mozilla.org. (bsc#1140868) - CVE-2019-11725: Fixed a Safebrowsing bypass involving WebSockets. (bsc#1140868) - CVE-2019-11727: Fixed a vulnerability where it possible to force NSS to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. (bsc#1141322) - CVE-2019-11728: Fixed an improper handling of the Alt-Svc header that allowed remote port scans. (bsc#1140868) - CVE-2019-11733: Fixed an insufficient protection of stored passwords in 'Saved Logins'. (bnc#1145665) - CVE-2019-11735: Fixed several memory safety bugs. (bnc#1149293) - CVE-2019-11736: Fixed a file manipulation and privilege escalation in Mozilla Maintenance Service. (bnc#1149292) - CVE-2019-11738: Fixed a content security policy bypass through hash-based sources in directives. (bnc#1149302) - CVE-2019-11740: Fixed several memory safety bugs. (bsc#1149299) - CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. (bsc#1149303) - CVE-2019-11743: Fixed a timing side-channel attack on cross-origin information, utilizing unload event attributes. (bsc#1149298) - CVE-2019-11744: Fixed an XSS caused by breaking out of title and textarea elements using innerHTML. (bsc#1149304) - CVE-2019-11746: Fixed a use-after-free while manipulating video. (bsc#1149297) - CVE-2019-11752: Fixed a use-after-free while extracting a key value in IndexedDB. (bsc#1149296) - CVE-2019-11753: Fixed a privilege escalation with Mozilla Maintenance Service in custom Firefox installation location. (bsc#1149295)

Non-security issues fixed: - Latest update now also released for s390x. (bsc#1109465) - Fixed a segmentation fault on s390vsl082. (bsc#1117473) - Fixed a crash on SLES15 s390x. (bsc#1124525) - Fixed a segmentation fault. (bsc#1133810)
Family:unixClass:patch
Status:Reference(s):1061305
1096180
1100687
1103678
1109465
1117473
1121624
1123482
1124211
1124525
1133204
1133205
1133498
1133501
1133534
1133810
1134689
1136183
1136732
1137001
1138034
1138688
1140868
1141267
1141322
1141688
1141861
1141862
1144059
1145665
1146098
1146105
1146107
1146111
1146115
1146123
1149292
1149293
1149294
1149295
1149296
1149297
1149298
1149299
1149302
1149303
1149304
1149323
1149943
1149944
1150011
1157652
1158328
CVE-2017-14988
CVE-2018-11439
CVE-2018-13785
CVE-2019-10130
CVE-2019-10164
CVE-2019-10197
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11598
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11718
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11733
CVE-2019-11735
CVE-2019-11736
CVE-2019-11738
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11745
CVE-2019-11746
CVE-2019-11747
CVE-2019-11748
CVE-2019-11749
CVE-2019-11750
CVE-2019-11751
CVE-2019-11752
CVE-2019-11753
CVE-2019-12450
CVE-2019-13722
CVE-2019-14809
CVE-2019-14822
CVE-2019-17005
CVE-2019-17008
CVE-2019-17009
CVE-2019-17010
CVE-2019-17011
CVE-2019-17012
CVE-2019-7317
CVE-2019-9512
CVE-2019-9514
CVE-2019-9811
CVE-2019-9812
CVE-2019-9848
CVE-2019-9849
CVE-2019-9850
CVE-2019-9851
CVE-2019-9852
CVE-2019-9854
CVE-2019-9855
SUSE-SU-2019:1374-2
SUSE-SU-2019:1398-2
SUSE-SU-2019:1523-1
SUSE-SU-2019:1594-1
SUSE-SU-2019:1869-1
SUSE-SU-2019:2012-1
SUSE-SU-2019:2043-1
SUSE-SU-2019:2213-1
SUSE-SU-2019:2402-1
SUSE-SU-2019:2427-1
SUSE-SU-2019:2545-1
SUSE-SU-2019:3337-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • kernel-firmware-20170530-21.13 is installed
  • OR ucode-amd-20170530-21.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND xfsprogs-4.15.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND ctdb-4.4.2-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-94.41 is installed
  • OR dlm-kmp-default-4.12.14-94.41 is installed
  • OR gfs2-kmp-default-4.12.14-94.41 is installed
  • OR ocfs2-kmp-default-4.12.14-94.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • libxmlsec1-gcrypt1-1.2.26-3.3 is installed
  • OR libxmlsec1-gnutls1-1.2.26-3.3 is installed
  • OR libxmlsec1-openssl1-1.2.26-3.3 is installed
  • OR xmlsec1-1.2.26-3.3 is installed
  • OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed
  • OR xmlsec1-openssl-devel-1.2.26-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • puppet-3.6.2-3 is installed
  • OR puppet-server-3.6.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-3.54 is installed
  • OR MozillaFirefox-branding-SLE-68-4.8 is installed
  • OR MozillaFirefox-devel-68.1.0-3.54 is installed
  • OR MozillaFirefox-translations-common-68.1.0-3.54 is installed
  • OR MozillaFirefox-translations-other-68.1.0-3.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libpmi0-18.08.9-3.10 is installed
  • OR libslurm33-18.08.9-3.10 is installed
  • OR perl-slurm-18.08.9-3.10 is installed
  • OR slurm-18.08.9-3.10 is installed
  • OR slurm-auth-none-18.08.9-3.10 is installed
  • OR slurm-config-18.08.9-3.10 is installed
  • OR slurm-config-man-18.08.9-3.10 is installed
  • OR slurm-devel-18.08.9-3.10 is installed
  • OR slurm-doc-18.08.9-3.10 is installed
  • OR slurm-lua-18.08.9-3.10 is installed
  • OR slurm-munge-18.08.9-3.10 is installed
  • OR slurm-node-18.08.9-3.10 is installed
  • OR slurm-pam_slurm-18.08.9-3.10 is installed
  • OR slurm-plugins-18.08.9-3.10 is installed
  • OR slurm-slurmdbd-18.08.9-3.10 is installed
  • OR slurm-sql-18.08.9-3.10 is installed
  • OR slurm-sview-18.08.9-3.10 is installed
  • OR slurm-torque-18.08.9-3.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND ntp-4.2.8p12-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND kernel-livepatch-tools-1.1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.7 is installed
  • OR kernel-default-livepatch-4.12.14-197.7 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.7 is installed
  • OR kernel-livepatch-4_12_14-197_7-default-1-3.3 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_2-1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libtag1-32bit-1.11.1-4.3 is installed
  • OR libtag_c0-32bit-1.11.1-4.3 is installed
  • OR taglib-1.11.1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • gnutls-3.6.7-6.14 is installed
  • OR gnutls-guile-3.6.7-6.14 is installed
  • OR libnettle-3.4.1-4.12 is installed
  • OR nettle-3.4.1-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-pycrypto-2.6.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.5 is installed
  • OR kernel-azure-base-4.12.14-5.5 is installed
  • OR kernel-azure-devel-4.12.14-5.5 is installed
  • OR kernel-devel-azure-4.12.14-5.5 is installed
  • OR kernel-source-azure-4.12.14-5.5 is installed
  • OR kernel-syms-azure-4.12.14-5.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND Package Information
  • python-2.7.14-7.24 is installed
  • OR python-base-2.7.14-7.24 is installed
  • OR python-curses-2.7.14-7.24 is installed
  • OR python-devel-2.7.14-7.24 is installed
  • OR python-gdbm-2.7.14-7.24 is installed
  • OR python-xml-2.7.14-7.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • libspice-server-devel-0.14.0-4.3 is installed
  • OR libspice-server1-0.14.0-4.3 is installed
  • OR spice-0.14.0-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • qemu-3.1.1.1-9.6 is installed
  • OR qemu-arm-3.1.1.1-9.6 is installed
  • OR qemu-audio-alsa-3.1.1.1-9.6 is installed
  • OR qemu-audio-oss-3.1.1.1-9.6 is installed
  • OR qemu-audio-pa-3.1.1.1-9.6 is installed
  • OR qemu-block-curl-3.1.1.1-9.6 is installed
  • OR qemu-block-iscsi-3.1.1.1-9.6 is installed
  • OR qemu-block-rbd-3.1.1.1-9.6 is installed
  • OR qemu-block-ssh-3.1.1.1-9.6 is installed
  • OR qemu-guest-agent-3.1.1.1-9.6 is installed
  • OR qemu-ipxe-1.0.0+-9.6 is installed
  • OR qemu-kvm-3.1.1.1-9.6 is installed
  • OR qemu-lang-3.1.1.1-9.6 is installed
  • OR qemu-ppc-3.1.1.1-9.6 is installed
  • OR qemu-s390-3.1.1.1-9.6 is installed
  • OR qemu-seabios-1.12.0-9.6 is installed
  • OR qemu-sgabios-8-9.6 is installed
  • OR qemu-ui-curses-3.1.1.1-9.6 is installed
  • OR qemu-ui-gtk-3.1.1.1-9.6 is installed
  • OR qemu-vgabios-1.12.0-9.6 is installed
  • OR qemu-x86-3.1.1.1-9.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Toolchain 12 is installed
  • AND Package Information
  • cpp5-5.3.1+r233831-9 is installed
  • OR gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-c++-5.3.1+r233831-9 is installed
  • OR gcc5-fortran-5.3.1+r233831-9 is installed
  • OR gcc5-info-5.3.1+r233831-9 is installed
  • OR gcc5-locale-5.3.1+r233831-9 is installed
  • OR libffi-devel-gcc5-5.3.1+r233831-9 is installed
  • OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • nodejs4-4.5.0-5 is installed
  • OR nodejs4-devel-4.5.0-5 is installed
  • OR nodejs4-docs-4.5.0-5 is installed
  • OR npm4-4.5.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND apache2-mod_jk-1.2.40-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache2-2.4.16-5 is installed
  • OR apache2-doc-2.4.16-5 is installed
  • OR apache2-example-pages-2.4.16-5 is installed
  • OR apache2-prefork-2.4.16-5 is installed
  • OR apache2-utils-2.4.16-5 is installed
  • OR apache2-worker-2.4.16-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND xalan-j2-2.7.0-264 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND systemtap-sdt-devel-2.5-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • DirectFB-devel-1.7.1-4.1 is installed
  • OR lib++dfb-devel-1.7.1-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • libtidy-0_99-0-1.0.20100204cvs-25.3 is installed
  • OR libtidy-0_99-0-devel-1.0.20100204cvs-25.3 is installed
  • OR tidy-1.0.20100204cvs-25.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • freerdp-2.0.0~rc4-3.3 is installed
  • OR freerdp-devel-2.0.0~rc4-3.3 is installed
  • OR libfreerdp2-2.0.0~rc4-3.3 is installed
  • OR libwinpr2-2.0.0~rc4-3.3 is installed
  • OR winpr2-devel-2.0.0~rc4-3.3 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • chromedriver-54.0.2840.59-109 is installed
  • OR chromium-54.0.2840.59-109 is installed
  • OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
    • BACK