OVAL Reference oval:org.opensuse.security:def:4113

Oval Definition:

oval:org.opensuse.security:def:4113

Revision Date:	2020-12-21	Version:	1
Title:	Security update for MozillaFirefox (Critical)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.6.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2020-55 (bsc#1180039) * CVE-2020-16042 (bmo#1679003) Operations on a BigInt could have caused uninitialized memory to be exposed * CVE-2020-26971 (bmo#1663466) Heap buffer overflow in WebGL * CVE-2020-26973 (bmo#1680084) CSS Sanitizer performed incorrect sanitization * CVE-2020-26974 (bmo#1681022) Incorrect cast of StyleGenericFlexBasis resulted in a heap use-after-free * CVE-2020-26978 (bmo#1677047) Internal network hosts could have been probed by a malicious webpage * CVE-2020-35111 (bmo#1657916) The proxy.onRequest API did not catch view-source URLs * CVE-2020-35112 (bmo#1661365) Opening an extension-less download may have inadvertently launched an executable instead * CVE-2020-35113 (bmo#1664831, bmo#1673589) Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6
Family:	unix	Class:	patch
Status:		Reference(s):	1063993 1079730 1083424 1083926 1083927 1098531 1100408 1101982 1107806 1111853 1112646 1114957 1116717 1117275 1117722 1118745 1119493 1121571 1121600 1121816 1121818 1121821 1123156 1123179 1125770 1128858 1129271 1129392 1132160 1132501 1132690 1134190 1134428 1135222 1140750 1141122 1144919 1145092 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1157119 1160673 1160922 1162687 1162689 1162691 1163102 1163103 1163104 1168669 1172004 1173032 1173786 1174010 1175223 1180039 CVE-2018-12327 CVE-2018-16872 CVE-2018-18954 CVE-2018-19364 CVE-2018-19489 CVE-2018-20685 CVE-2018-5729 CVE-2018-5730 CVE-2018-7170 CVE-2019-10208 CVE-2019-10691 CVE-2019-11068 CVE-2019-12528 CVE-2019-13314 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-18904 CVE-2019-19727 CVE-2019-5419 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-6778 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-12402 CVE-2020-12693 CVE-2020-16042 CVE-2020-26971 CVE-2020-26973 CVE-2020-26974 CVE-2020-26978 CVE-2020-35111 CVE-2020-35112 CVE-2020-35113 CVE-2020-7068 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 SUSE-SU-2018:3386-1 SUSE-SU-2019:0126-1 SUSE-SU-2019:0175-1 SUSE-SU-2019:0423-1 SUSE-SU-2019:0997-1 SUSE-SU-2019:1381-1 SUSE-SU-2019:2228-1 SUSE-SU-2019:2260-1 SUSE-SU-2020:0278-1 SUSE-SU-2020:0455-1 SUSE-SU-2020:0493-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:2455-1 SUSE-SU-2020:2602-1 SUSE-SU-2020:3045-1 SUSE-SU-2020:3901-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information strongswan-4.4.0-6.25.1 is installed OR strongswan-doc-4.4.0-6.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND cifs-utils-6.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information glibc-2.19-31 is installed OR glibc-32bit-2.19-31 is installed OR glibc-devel-2.19-31 is installed OR glibc-devel-32bit-2.19-31 is installed OR glibc-i18ndata-2.19-31 is installed OR glibc-locale-2.19-31 is installed OR glibc-locale-32bit-2.19-31 is installed OR nscd-2.19-31 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libXpm4-3.5.11-5 is installed OR libXpm4-32bit-3.5.11-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information MozillaFirefox-78.6.0-8.20.2 is installed OR MozillaFirefox-devel-78.6.0-8.20.2 is installed OR MozillaFirefox-translations-common-78.6.0-8.20.2 is installed OR MozillaFirefox-translations-other-78.6.0-8.20.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-97.1 is installed OR libopenssl0_9_8-0.9.8j-97.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpacemaker3-1.1.15-19 is installed OR pacemaker-1.1.15-19 is installed OR pacemaker-cli-1.1.15-19 is installed OR pacemaker-cts-1.1.15-19 is installed OR pacemaker-remote-1.1.15-19 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.26 is installed OR dlm-kmp-default-4.12.14-197.26 is installed OR gfs2-kmp-default-4.12.14-197.26 is installed OR kernel-default-4.12.14-197.26 is installed OR ocfs2-kmp-default-4.12.14-197.26 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libvirt-4.0.0-9.32 is installed OR libvirt-admin-4.0.0-9.32 is installed OR libvirt-client-4.0.0-9.32 is installed OR libvirt-daemon-4.0.0-9.32 is installed OR libvirt-daemon-config-network-4.0.0-9.32 is installed OR libvirt-daemon-config-nwfilter-4.0.0-9.32 is installed OR libvirt-daemon-driver-interface-4.0.0-9.32 is installed OR libvirt-daemon-driver-libxl-4.0.0-9.32 is installed OR libvirt-daemon-driver-lxc-4.0.0-9.32 is installed OR libvirt-daemon-driver-network-4.0.0-9.32 is installed OR libvirt-daemon-driver-nodedev-4.0.0-9.32 is installed OR libvirt-daemon-driver-nwfilter-4.0.0-9.32 is installed OR libvirt-daemon-driver-qemu-4.0.0-9.32 is installed OR libvirt-daemon-driver-secret-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-core-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-disk-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-iscsi-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-logical-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-mpath-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-rbd-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-scsi-4.0.0-9.32 is installed OR libvirt-daemon-hooks-4.0.0-9.32 is installed OR libvirt-daemon-lxc-4.0.0-9.32 is installed OR libvirt-daemon-qemu-4.0.0-9.32 is installed OR libvirt-daemon-xen-4.0.0-9.32 is installed OR libvirt-devel-4.0.0-9.32 is installed OR libvirt-doc-4.0.0-9.32 is installed OR libvirt-libs-4.0.0-9.32 is installed OR libvirt-lock-sanlock-4.0.0-9.32 is installed OR libvirt-nss-4.0.0-9.32 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libvirt-4.0.0-9.32 is installed OR libvirt-admin-4.0.0-9.32 is installed OR libvirt-client-4.0.0-9.32 is installed OR libvirt-daemon-4.0.0-9.32 is installed OR libvirt-daemon-config-network-4.0.0-9.32 is installed OR libvirt-daemon-config-nwfilter-4.0.0-9.32 is installed OR libvirt-daemon-driver-interface-4.0.0-9.32 is installed OR libvirt-daemon-driver-libxl-4.0.0-9.32 is installed OR libvirt-daemon-driver-lxc-4.0.0-9.32 is installed OR libvirt-daemon-driver-network-4.0.0-9.32 is installed OR libvirt-daemon-driver-nodedev-4.0.0-9.32 is installed OR libvirt-daemon-driver-nwfilter-4.0.0-9.32 is installed OR libvirt-daemon-driver-qemu-4.0.0-9.32 is installed OR libvirt-daemon-driver-secret-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-core-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-disk-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-iscsi-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-logical-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-mpath-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-rbd-4.0.0-9.32 is installed OR libvirt-daemon-driver-storage-scsi-4.0.0-9.32 is installed OR libvirt-daemon-hooks-4.0.0-9.32 is installed OR libvirt-daemon-lxc-4.0.0-9.32 is installed OR libvirt-daemon-qemu-4.0.0-9.32 is installed OR libvirt-daemon-xen-4.0.0-9.32 is installed OR libvirt-devel-4.0.0-9.32 is installed OR libvirt-doc-4.0.0-9.32 is installed OR libvirt-libs-4.0.0-9.32 is installed OR libvirt-lock-sanlock-4.0.0-9.32 is installed OR libvirt-nss-4.0.0-9.32 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_21-90-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_3-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_1-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.31 is installed OR slurm-17.11.13-6.31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND ntp-4.2.8p12-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information openssh-7.6p1-9.13 is installed OR openssh-fips-7.6p1-9.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libfreebl3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information python3-virt-bootstrap-1.0.0-5.3 is installed OR virt-bootstrap-1.0.0-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.16.1-3.20 is installed OR nodejs8-devel-8.16.1-3.20 is installed OR nodejs8-docs-8.16.1-3.20 is installed OR npm8-8.16.1-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information cvs-1.12.12-144.23.5.1 is installed OR cvs-doc-1.12.12-144.23.5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libtasn1-1.5-1.30.1 is installed OR libtasn1-3-1.5-1.30.1 is installed OR libtasn1-3-32bit-1.5-1.30.1 is installed OR libtasn1-3-x86-1.5-1.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gpg2-2.0.24-1 is installed OR gpg2-lang-2.0.24-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information g3utils-1.1.36-58.3 is installed OR mgetty-1.1.36-58.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libmariadb-devel-3.1.8-3.18 is installed OR libmariadb3-3.1.8-3.18 is installed OR libmariadb_plugins-3.1.8-3.18 is installed OR libmariadbprivate-3.1.8-3.18 is installed OR mariadb-connector-c-3.1.8-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND squid-4.11-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libopenssl-devel-1.0.1i-9.3 is installed OR openssl-1.0.1i-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information kernel-docs-3.12.51-60.20.2 is installed OR kernel-obs-build-3.12.51-60.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information gegl-devel-0.2.0-14 is installed OR libgegl-0_2-0-0.2.0-14 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information dia-0.97.2-13 is installed OR dia-lang-0.97.2-13 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.3.0-3.17 is installed OR MozillaThunderbird-translations-common-60.3.0-3.17 is installed OR MozillaThunderbird-translations-other-60.3.0-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libixion-0.14.1-4.3 is installed OR libixion-0_14-0-0.14.1-4.3 is installed OR liborcus-0.14.1-3.3 is installed OR liborcus-0_14-0-0.14.1-3.3 is installed OR liborcus-devel-0.14.1-3.3 is installed OR myspell-af_ZA-20190423-3.9 is installed OR myspell-ar-20190423-3.9 is installed OR myspell-bg_BG-20190423-3.9 is installed OR myspell-bn_BD-20190423-3.9 is installed OR myspell-br_FR-20190423-3.9 is installed OR myspell-ca-20190423-3.9 is installed OR myspell-cs_CZ-20190423-3.9 is installed OR myspell-da_DK-20190423-3.9 is installed OR myspell-dictionaries-20190423-3.9 is installed OR myspell-el_GR-20190423-3.9 is installed OR myspell-et_EE-20190423-3.9 is installed OR myspell-fr_FR-20190423-3.9 is installed OR myspell-gl-20190423-3.9 is installed OR myspell-gu_IN-20190423-3.9 is installed OR myspell-he_IL-20190423-3.9 is installed OR myspell-hi_IN-20190423-3.9 is installed OR myspell-hr_HR-20190423-3.9 is installed OR myspell-it_IT-20190423-3.9 is installed OR myspell-lt_LT-20190423-3.9 is installed OR myspell-lv_LV-20190423-3.9 is installed OR myspell-nl_NL-20190423-3.9 is installed OR myspell-nn_NO-20190423-3.9 is installed OR myspell-pl_PL-20190423-3.9 is installed OR myspell-pt_PT-20190423-3.9 is installed OR myspell-si_LK-20190423-3.9 is installed OR myspell-sk_SK-20190423-3.9 is installed OR myspell-sl_SI-20190423-3.9 is installed OR myspell-sr-20190423-3.9 is installed OR myspell-sv_SE-20190423-3.9 is installed OR myspell-te_IN-20190423-3.9 is installed OR myspell-th_TH-20190423-3.9 is installed OR myspell-tr_TR-20190423-3.9 is installed OR myspell-uk_UA-20190423-3.9 is installed OR myspell-zu_ZA-20190423-3.9 is installed

BACK