Oval Definition:oval:org.opensuse.security:def:2824
Revision Date:2020-12-02Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

Update to version 68.8.0 ESR (bsc#1171186):

- CVE-2020-12387: Use-after-free during worker shutdown - CVE-2020-12388: Sandbox escape with improperly guarded Access Tokens - CVE-2020-12389: Sandbox escape with improperly separated process types - CVE-2020-6831: Buffer overflow in SCTP chunk input validation - CVE-2020-12392: Arbitrary local file access with 'Copy as cURL' - CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection - CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
Family:unixClass:patch
Status:Reference(s):1082318
1096726
1103678
1125433
1136981
1136986
1136992
1137001
1137930
1140255
1141688
1141853
1142721
1142743
1143578
1143581
1143582
1143584
1144656
1144675
1146111
1146115
1146123
1149495
1149496
1150137
1171186
1172402
CVE-2018-11782
CVE-2018-15664
CVE-2018-20852
CVE-2018-20860
CVE-2018-20861
CVE-2019-0203
CVE-2019-12447
CVE-2019-12448
CVE-2019-12449
CVE-2019-12450
CVE-2019-12795
CVE-2019-13104
CVE-2019-13106
CVE-2019-13132
CVE-2019-14382
CVE-2019-14383
CVE-2019-14809
CVE-2019-16168
CVE-2019-5481
CVE-2019-5482
CVE-2019-9512
CVE-2019-9514
CVE-2020-12387
CVE-2020-12388
CVE-2020-12389
CVE-2020-12392
CVE-2020-12393
CVE-2020-12395
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
CVE-2020-6831
SUSE-SU-2019:1562-1
SUSE-SU-2019:1594-1
SUSE-SU-2019:1717-1
SUSE-SU-2019:1776-1
SUSE-SU-2019:2031-1
SUSE-SU-2019:2114-1
SUSE-SU-2019:2213-1
SUSE-SU-2019:2373-1
SUSE-SU-2019:2435-1
SUSE-SU-2019:2475-1
SUSE-SU-2019:2533-1
SUSE-SU-2020:1209-1
SUSE-SU-2020:1556-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.20 is installed
  • OR libopenssl1_0_0-1.0.2j-60.20 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.20 is installed
  • OR openssl-1.0.2j-60.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND cifs-utils-6.5-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND zoo-2.10-1020 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND libpcreposix0-8.39-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.12 is installed
  • OR libavdevice57-3.4.2-4.12 is installed
  • OR libavfilter6-3.4.2-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND docker-1.6.2-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox-68.8.0-3.87 is installed
  • OR MozillaFirefox-devel-68.8.0-3.87 is installed
  • OR MozillaFirefox-translations-common-68.8.0-3.87 is installed
  • OR MozillaFirefox-translations-other-68.8.0-3.87 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libnss_slurm2-20.02.3-3.8 is installed
  • OR libpmi0_20_02-20.02.3-3.8 is installed
  • OR libslurm35-20.02.3-3.8 is installed
  • OR perl-slurm_20_02-20.02.3-3.8 is installed
  • OR slurm_20_02-20.02.3-3.8 is installed
  • OR slurm_20_02-auth-none-20.02.3-3.8 is installed
  • OR slurm_20_02-config-20.02.3-3.8 is installed
  • OR slurm_20_02-config-man-20.02.3-3.8 is installed
  • OR slurm_20_02-devel-20.02.3-3.8 is installed
  • OR slurm_20_02-doc-20.02.3-3.8 is installed
  • OR slurm_20_02-lua-20.02.3-3.8 is installed
  • OR slurm_20_02-munge-20.02.3-3.8 is installed
  • OR slurm_20_02-node-20.02.3-3.8 is installed
  • OR slurm_20_02-pam_slurm-20.02.3-3.8 is installed
  • OR slurm_20_02-plugins-20.02.3-3.8 is installed
  • OR slurm_20_02-slurmdbd-20.02.3-3.8 is installed
  • OR slurm_20_02-sql-20.02.3-3.8 is installed
  • OR slurm_20_02-sview-20.02.3-3.8 is installed
  • OR slurm_20_02-torque-20.02.3-3.8 is installed
  • OR slurm_20_02-webdoc-20.02.3-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND syslog-ng-3.4.5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-3.6 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-3.6 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-3.6 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.21 is installed
  • OR reiserfs-kmp-default-4.12.14-197.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_3-default-3-2 is installed
  • OR kernel-livepatch-SLE15_Update_1-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.10 is installed
  • OR kernel-default-livepatch-4.12.14-197.10 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.10 is installed
  • OR kernel-livepatch-4_12_14-197_10-default-1-3.3 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_3-1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-test-18.09.6_ce-6.20 is installed
  • OR docker-zsh-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • MozillaThunderbird-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-pycrypto-2.6.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.8 is installed
  • OR kernel-azure-base-4.12.14-5.8 is installed
  • OR kernel-azure-devel-4.12.14-5.8 is installed
  • OR kernel-devel-azure-4.12.14-5.8 is installed
  • OR kernel-source-azure-4.12.14-5.8 is installed
  • OR kernel-syms-azure-4.12.14-5.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND Package Information
  • python-requests-2.20.1-6.3 is installed
  • OR python2-requests-2.20.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • ovmf-2017+git1510945757.b2662641d5-5.3 is installed
  • OR ovmf-tools-2017+git1510945757.b2662641d5-5.3 is installed
  • OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.3 is installed
  • OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • 389-ds-1.4.0.3-4.7 is installed
  • OR 389-ds-devel-1.4.0.3-4.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-4 is installed
  • OR php5-5.5.14-4 is installed
  • OR php5-bcmath-5.5.14-4 is installed
  • OR php5-bz2-5.5.14-4 is installed
  • OR php5-calendar-5.5.14-4 is installed
  • OR php5-ctype-5.5.14-4 is installed
  • OR php5-curl-5.5.14-4 is installed
  • OR php5-dba-5.5.14-4 is installed
  • OR php5-dom-5.5.14-4 is installed
  • OR php5-enchant-5.5.14-4 is installed
  • OR php5-exif-5.5.14-4 is installed
  • OR php5-fastcgi-5.5.14-4 is installed
  • OR php5-fileinfo-5.5.14-4 is installed
  • OR php5-fpm-5.5.14-4 is installed
  • OR php5-ftp-5.5.14-4 is installed
  • OR php5-gd-5.5.14-4 is installed
  • OR php5-gettext-5.5.14-4 is installed
  • OR php5-gmp-5.5.14-4 is installed
  • OR php5-iconv-5.5.14-4 is installed
  • OR php5-intl-5.5.14-4 is installed
  • OR php5-json-5.5.14-4 is installed
  • OR php5-ldap-5.5.14-4 is installed
  • OR php5-mbstring-5.5.14-4 is installed
  • OR php5-mcrypt-5.5.14-4 is installed
  • OR php5-mysql-5.5.14-4 is installed
  • OR php5-odbc-5.5.14-4 is installed
  • OR php5-openssl-5.5.14-4 is installed
  • OR php5-pcntl-5.5.14-4 is installed
  • OR php5-pdo-5.5.14-4 is installed
  • OR php5-pear-5.5.14-4 is installed
  • OR php5-pgsql-5.5.14-4 is installed
  • OR php5-pspell-5.5.14-4 is installed
  • OR php5-shmop-5.5.14-4 is installed
  • OR php5-snmp-5.5.14-4 is installed
  • OR php5-soap-5.5.14-4 is installed
  • OR php5-sockets-5.5.14-4 is installed
  • OR php5-sqlite-5.5.14-4 is installed
  • OR php5-suhosin-5.5.14-4 is installed
  • OR php5-sysvmsg-5.5.14-4 is installed
  • OR php5-sysvsem-5.5.14-4 is installed
  • OR php5-sysvshm-5.5.14-4 is installed
  • OR php5-tokenizer-5.5.14-4 is installed
  • OR php5-wddx-5.5.14-4 is installed
  • OR php5-xmlreader-5.5.14-4 is installed
  • OR php5-xmlrpc-5.5.14-4 is installed
  • OR php5-xmlwriter-5.5.14-4 is installed
  • OR php5-xsl-5.5.14-4 is installed
  • OR php5-zip-5.5.14-4 is installed
  • OR php5-zlib-5.5.14-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.12 is installed
  • OR php7-7.2.5-4.12 is installed
  • OR php7-bcmath-7.2.5-4.12 is installed
  • OR php7-bz2-7.2.5-4.12 is installed
  • OR php7-calendar-7.2.5-4.12 is installed
  • OR php7-ctype-7.2.5-4.12 is installed
  • OR php7-curl-7.2.5-4.12 is installed
  • OR php7-dba-7.2.5-4.12 is installed
  • OR php7-devel-7.2.5-4.12 is installed
  • OR php7-dom-7.2.5-4.12 is installed
  • OR php7-enchant-7.2.5-4.12 is installed
  • OR php7-exif-7.2.5-4.12 is installed
  • OR php7-fastcgi-7.2.5-4.12 is installed
  • OR php7-fileinfo-7.2.5-4.12 is installed
  • OR php7-fpm-7.2.5-4.12 is installed
  • OR php7-ftp-7.2.5-4.12 is installed
  • OR php7-gd-7.2.5-4.12 is installed
  • OR php7-gettext-7.2.5-4.12 is installed
  • OR php7-gmp-7.2.5-4.12 is installed
  • OR php7-iconv-7.2.5-4.12 is installed
  • OR php7-intl-7.2.5-4.12 is installed
  • OR php7-json-7.2.5-4.12 is installed
  • OR php7-ldap-7.2.5-4.12 is installed
  • OR php7-mbstring-7.2.5-4.12 is installed
  • OR php7-mysql-7.2.5-4.12 is installed
  • OR php7-odbc-7.2.5-4.12 is installed
  • OR php7-opcache-7.2.5-4.12 is installed
  • OR php7-openssl-7.2.5-4.12 is installed
  • OR php7-pcntl-7.2.5-4.12 is installed
  • OR php7-pdo-7.2.5-4.12 is installed
  • OR php7-pear-7.2.5-4.12 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.12 is installed
  • OR php7-pgsql-7.2.5-4.12 is installed
  • OR php7-phar-7.2.5-4.12 is installed
  • OR php7-posix-7.2.5-4.12 is installed
  • OR php7-shmop-7.2.5-4.12 is installed
  • OR php7-snmp-7.2.5-4.12 is installed
  • OR php7-soap-7.2.5-4.12 is installed
  • OR php7-sockets-7.2.5-4.12 is installed
  • OR php7-sqlite-7.2.5-4.12 is installed
  • OR php7-sysvmsg-7.2.5-4.12 is installed
  • OR php7-sysvsem-7.2.5-4.12 is installed
  • OR php7-sysvshm-7.2.5-4.12 is installed
  • OR php7-tokenizer-7.2.5-4.12 is installed
  • OR php7-wddx-7.2.5-4.12 is installed
  • OR php7-xmlreader-7.2.5-4.12 is installed
  • OR php7-xmlrpc-7.2.5-4.12 is installed
  • OR php7-xmlwriter-7.2.5-4.12 is installed
  • OR php7-xsl-7.2.5-4.12 is installed
  • OR php7-zip-7.2.5-4.12 is installed
  • OR php7-zlib-7.2.5-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache2-mod_nss-1.0.8-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND zoo-2.10-1020 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • gdk-pixbuf-2.30.6-7.2 is installed
  • OR gdk-pixbuf-devel-2.30.6-7.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR ImageMagick-devel-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagick++-devel-6.8.8.1-8 is installed
  • OR perl-PerlMagick-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND libzip-devel-0.11.1-12.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.7 is installed
  • OR kernel-default-extra-4.12.14-197.7 is installed
    • BACK