OVAL Reference oval:org.opensuse.security:def:2824

Oval Definition:

oval:org.opensuse.security:def:2824

Revision Date:	2020-12-02	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: Update to version 68.8.0 ESR (bsc#1171186): - CVE-2020-12387: Use-after-free during worker shutdown - CVE-2020-12388: Sandbox escape with improperly guarded Access Tokens - CVE-2020-12389: Sandbox escape with improperly separated process types - CVE-2020-6831: Buffer overflow in SCTP chunk input validation - CVE-2020-12392: Arbitrary local file access with 'Copy as cURL' - CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
Family:	unix	Class:	patch
Status:		Reference(s):	1082318 1096726 1103678 1125433 1136981 1136986 1136992 1137001 1137930 1140255 1141688 1141853 1142721 1142743 1143578 1143581 1143582 1143584 1144656 1144675 1146111 1146115 1146123 1149495 1149496 1150137 1171186 1172402 CVE-2018-11782 CVE-2018-15664 CVE-2018-20852 CVE-2018-20860 CVE-2018-20861 CVE-2019-0203 CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 CVE-2019-12450 CVE-2019-12795 CVE-2019-13104 CVE-2019-13106 CVE-2019-13132 CVE-2019-14382 CVE-2019-14383 CVE-2019-14809 CVE-2019-16168 CVE-2019-5481 CVE-2019-5482 CVE-2019-9512 CVE-2019-9514 CVE-2020-12387 CVE-2020-12388 CVE-2020-12389 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-6831 SUSE-SU-2019:1562-1 SUSE-SU-2019:1594-1 SUSE-SU-2019:1717-1 SUSE-SU-2019:1776-1 SUSE-SU-2019:2031-1 SUSE-SU-2019:2114-1 SUSE-SU-2019:2213-1 SUSE-SU-2019:2373-1 SUSE-SU-2019:2435-1 SUSE-SU-2019:2475-1 SUSE-SU-2019:2533-1 SUSE-SU-2020:1209-1 SUSE-SU-2020:1556-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libopenssl-devel-1.0.2j-60.20 is installed OR libopenssl1_0_0-1.0.2j-60.20 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.20 is installed OR openssl-1.0.2j-60.20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND zoo-2.10-1020 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND libpcreposix0-8.39-7 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-68.8.0-3.87 is installed OR MozillaFirefox-devel-68.8.0-3.87 is installed OR MozillaFirefox-translations-common-68.8.0-3.87 is installed OR MozillaFirefox-translations-other-68.8.0-3.87 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libnss_slurm2-20.02.3-3.8 is installed OR libpmi0_20_02-20.02.3-3.8 is installed OR libslurm35-20.02.3-3.8 is installed OR perl-slurm_20_02-20.02.3-3.8 is installed OR slurm_20_02-20.02.3-3.8 is installed OR slurm_20_02-auth-none-20.02.3-3.8 is installed OR slurm_20_02-config-20.02.3-3.8 is installed OR slurm_20_02-config-man-20.02.3-3.8 is installed OR slurm_20_02-devel-20.02.3-3.8 is installed OR slurm_20_02-doc-20.02.3-3.8 is installed OR slurm_20_02-lua-20.02.3-3.8 is installed OR slurm_20_02-munge-20.02.3-3.8 is installed OR slurm_20_02-node-20.02.3-3.8 is installed OR slurm_20_02-pam_slurm-20.02.3-3.8 is installed OR slurm_20_02-plugins-20.02.3-3.8 is installed OR slurm_20_02-slurmdbd-20.02.3-3.8 is installed OR slurm_20_02-sql-20.02.3-3.8 is installed OR slurm_20_02-sview-20.02.3-3.8 is installed OR slurm_20_02-torque-20.02.3-3.8 is installed OR slurm_20_02-webdoc-20.02.3-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND syslog-ng-3.4.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.21 is installed OR reiserfs-kmp-default-4.12.14-197.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-3-2 is installed OR kernel-livepatch-SLE15_Update_1-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-livepatch-4.12.14-197.10 is installed OR kernel-default-livepatch-devel-4.12.14-197.10 is installed OR kernel-livepatch-4_12_14-197_10-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_3-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-test-18.09.6_ce-6.20 is installed OR docker-zsh-completion-18.09.6_ce-6.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaThunderbird-68.9.0-3.85 is installed OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-pycrypto-2.6.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.8 is installed OR kernel-azure-base-4.12.14-5.8 is installed OR kernel-azure-devel-4.12.14-5.8 is installed OR kernel-devel-azure-4.12.14-5.8 is installed OR kernel-source-azure-4.12.14-5.8 is installed OR kernel-syms-azure-4.12.14-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-requests-2.20.1-6.3 is installed OR python2-requests-2.20.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.3 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.3 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.3 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-devel-1.4.0.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-4 is installed OR php5-5.5.14-4 is installed OR php5-bcmath-5.5.14-4 is installed OR php5-bz2-5.5.14-4 is installed OR php5-calendar-5.5.14-4 is installed OR php5-ctype-5.5.14-4 is installed OR php5-curl-5.5.14-4 is installed OR php5-dba-5.5.14-4 is installed OR php5-dom-5.5.14-4 is installed OR php5-enchant-5.5.14-4 is installed OR php5-exif-5.5.14-4 is installed OR php5-fastcgi-5.5.14-4 is installed OR php5-fileinfo-5.5.14-4 is installed OR php5-fpm-5.5.14-4 is installed OR php5-ftp-5.5.14-4 is installed OR php5-gd-5.5.14-4 is installed OR php5-gettext-5.5.14-4 is installed OR php5-gmp-5.5.14-4 is installed OR php5-iconv-5.5.14-4 is installed OR php5-intl-5.5.14-4 is installed OR php5-json-5.5.14-4 is installed OR php5-ldap-5.5.14-4 is installed OR php5-mbstring-5.5.14-4 is installed OR php5-mcrypt-5.5.14-4 is installed OR php5-mysql-5.5.14-4 is installed OR php5-odbc-5.5.14-4 is installed OR php5-openssl-5.5.14-4 is installed OR php5-pcntl-5.5.14-4 is installed OR php5-pdo-5.5.14-4 is installed OR php5-pear-5.5.14-4 is installed OR php5-pgsql-5.5.14-4 is installed OR php5-pspell-5.5.14-4 is installed OR php5-shmop-5.5.14-4 is installed OR php5-snmp-5.5.14-4 is installed OR php5-soap-5.5.14-4 is installed OR php5-sockets-5.5.14-4 is installed OR php5-sqlite-5.5.14-4 is installed OR php5-suhosin-5.5.14-4 is installed OR php5-sysvmsg-5.5.14-4 is installed OR php5-sysvsem-5.5.14-4 is installed OR php5-sysvshm-5.5.14-4 is installed OR php5-tokenizer-5.5.14-4 is installed OR php5-wddx-5.5.14-4 is installed OR php5-xmlreader-5.5.14-4 is installed OR php5-xmlrpc-5.5.14-4 is installed OR php5-xmlwriter-5.5.14-4 is installed OR php5-xsl-5.5.14-4 is installed OR php5-zip-5.5.14-4 is installed OR php5-zlib-5.5.14-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.12 is installed OR php7-7.2.5-4.12 is installed OR php7-bcmath-7.2.5-4.12 is installed OR php7-bz2-7.2.5-4.12 is installed OR php7-calendar-7.2.5-4.12 is installed OR php7-ctype-7.2.5-4.12 is installed OR php7-curl-7.2.5-4.12 is installed OR php7-dba-7.2.5-4.12 is installed OR php7-devel-7.2.5-4.12 is installed OR php7-dom-7.2.5-4.12 is installed OR php7-enchant-7.2.5-4.12 is installed OR php7-exif-7.2.5-4.12 is installed OR php7-fastcgi-7.2.5-4.12 is installed OR php7-fileinfo-7.2.5-4.12 is installed OR php7-fpm-7.2.5-4.12 is installed OR php7-ftp-7.2.5-4.12 is installed OR php7-gd-7.2.5-4.12 is installed OR php7-gettext-7.2.5-4.12 is installed OR php7-gmp-7.2.5-4.12 is installed OR php7-iconv-7.2.5-4.12 is installed OR php7-intl-7.2.5-4.12 is installed OR php7-json-7.2.5-4.12 is installed OR php7-ldap-7.2.5-4.12 is installed OR php7-mbstring-7.2.5-4.12 is installed OR php7-mysql-7.2.5-4.12 is installed OR php7-odbc-7.2.5-4.12 is installed OR php7-opcache-7.2.5-4.12 is installed OR php7-openssl-7.2.5-4.12 is installed OR php7-pcntl-7.2.5-4.12 is installed OR php7-pdo-7.2.5-4.12 is installed OR php7-pear-7.2.5-4.12 is installed OR php7-pear-Archive_Tar-7.2.5-4.12 is installed OR php7-pgsql-7.2.5-4.12 is installed OR php7-phar-7.2.5-4.12 is installed OR php7-posix-7.2.5-4.12 is installed OR php7-shmop-7.2.5-4.12 is installed OR php7-snmp-7.2.5-4.12 is installed OR php7-soap-7.2.5-4.12 is installed OR php7-sockets-7.2.5-4.12 is installed OR php7-sqlite-7.2.5-4.12 is installed OR php7-sysvmsg-7.2.5-4.12 is installed OR php7-sysvsem-7.2.5-4.12 is installed OR php7-sysvshm-7.2.5-4.12 is installed OR php7-tokenizer-7.2.5-4.12 is installed OR php7-wddx-7.2.5-4.12 is installed OR php7-xmlreader-7.2.5-4.12 is installed OR php7-xmlrpc-7.2.5-4.12 is installed OR php7-xmlwriter-7.2.5-4.12 is installed OR php7-xsl-7.2.5-4.12 is installed OR php7-zip-7.2.5-4.12 is installed OR php7-zlib-7.2.5-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_nss-1.0.8-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND zoo-2.10-1020 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information gdk-pixbuf-2.30.6-7.2 is installed OR gdk-pixbuf-devel-2.30.6-7.2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR ImageMagick-devel-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagick++-devel-6.8.8.1-8 is installed OR perl-PerlMagick-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND libzip-devel-0.11.1-12.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-extra-4.12.14-197.7 is installed

BACK