OVAL Reference oval:org.opensuse.security:def:45181

Oval Definition:

oval:org.opensuse.security:def:45181

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox, mozilla-nss (Important)
Description:	This update for MozillaFirefox to ESR 52.4, mozilla-nss fixes the following issues: This security issue was fixed for mozilla-nss: - CVE-2017-7805: Prevent use-after-free in TLS 1.2 when generating handshake hashes (bsc#1061005) These security issues were fixed for Firefox - CVE-2017-7825: Fixed some Tibetan and Arabic unicode characters rendering (bsc#1060445). - CVE-2017-7805: Prevent Use-after-free in TLS 1.2 generating handshake hashes (bsc#1060445). - CVE-2017-7819: Prevent Use-after-free while resizing images in design mode (bsc#1060445). - CVE-2017-7818: Prevent Use-after-free during ARIA array manipulation (bsc#1060445). - CVE-2017-7793: Prevent Use-after-free with Fetch API (bsc#1060445). - CVE-2017-7824: Prevent Buffer overflow when drawing and validating elements with ANGLE (bsc#1060445). - CVE-2017-7810: Fixed several memory safety bugs (bsc#1060445). - CVE-2017-7823: CSP sandbox directive did not create a unique origin (bsc#1060445). - CVE-2017-7814: Blob and data URLs bypassed phishing and malware protection warnings (bsc#1060445).
Family:	unix	Class:	patch
Status:		Reference(s):	1056993 1060445 1061005 1077358 1084632 1099510 1101288 1103511 1138034 1150003 1150250 1154609 1158328 1159646 1164692 1168630 1168994 1173100 1173160 1173659 1173661 1173663 1173812 1173867 1173869 1173942 1173963 1174247 1174463 1174570 1176496 1176764 925502 995352 CVE-2013-7490 CVE-2015-2775 CVE-2015-9262 CVE-2016-6893 CVE-2017-6362 CVE-2017-7793 CVE-2017-7805 CVE-2017-7810 CVE-2017-7814 CVE-2017-7818 CVE-2017-7819 CVE-2017-7823 CVE-2017-7824 CVE-2017-7825 CVE-2018-0618 CVE-2018-13796 CVE-2018-5950 CVE-2019-0155 CVE-2019-10164 CVE-2019-11745 CVE-2019-13722 CVE-2019-14895 CVE-2019-14901 CVE-2019-1547 CVE-2019-1563 CVE-2019-16746 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-17571 CVE-2019-18197 CVE-2019-18680 CVE-2019-19447 CVE-2019-20919 CVE-2019-9458 CVE-2020-10713 CVE-2020-10745 CVE-2020-11668 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14331 CVE-2020-15706 CVE-2020-15707 CVE-2020-1938 CVE-2020-6819 CVE-2020-6820 SUSE-SU-2017:2688-1 SUSE-SU-2018:0135-1 SUSE-SU-2019:1783-2 SUSE-SU-2019:3347-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:2066-1 SUSE-SU-2020:2856-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information alsa-1.1.4.1-1 is installed OR alsa-devel-1.1.4.1-1 is installed OR libasound2-1.1.4.1-1 is installed OR libasound2-32bit-1.1.4.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND facter-2.0.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND cifs-utils-6.4-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information dbus-1-1.8.16-19 is installed OR dbus-1-x11-1.8.16-19 is installed OR libdbus-1-3-1.8.16-19 is installed OR libdbus-1-3-32bit-1.8.16-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND hardlink-1.0+git.e66999f-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND conntrack-tools-1.4.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information MozillaFirefox-60.4.0-3.21 is installed OR MozillaFirefox-devel-60.4.0-3.21 is installed OR MozillaFirefox-translations-common-60.4.0-3.21 is installed OR MozillaFirefox-translations-other-60.4.0-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libsrtp-devel-1.6.0-2 is installed OR libsrtp1-1.6.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information MozillaFirefox-68.6.1-3.81 is installed OR MozillaFirefox-devel-68.6.1-3.81 is installed OR MozillaFirefox-translations-common-68.6.1-3.81 is installed OR MozillaFirefox-translations-other-68.6.1-3.81 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information python3-base-3.6.8-3.23 is installed OR python3-tools-3.6.8-3.23 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.9-3.10 is installed OR libslurm33-18.08.9-3.10 is installed OR perl-slurm-18.08.9-3.10 is installed OR slurm-18.08.9-3.10 is installed OR slurm-auth-none-18.08.9-3.10 is installed OR slurm-config-18.08.9-3.10 is installed OR slurm-config-man-18.08.9-3.10 is installed OR slurm-devel-18.08.9-3.10 is installed OR slurm-doc-18.08.9-3.10 is installed OR slurm-lua-18.08.9-3.10 is installed OR slurm-munge-18.08.9-3.10 is installed OR slurm-node-18.08.9-3.10 is installed OR slurm-pam_slurm-18.08.9-3.10 is installed OR slurm-plugins-18.08.9-3.10 is installed OR slurm-slurmdbd-18.08.9-3.10 is installed OR slurm-sql-18.08.9-3.10 is installed OR slurm-sview-18.08.9-3.10 is installed OR slurm-torque-18.08.9-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.22 is installed OR reiserfs-kmp-default-4.12.14-150.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.18 is installed OR reiserfs-kmp-default-4.12.14-197.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_10-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_3-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information python-Werkzeug-0.12.2-3.3 is installed OR python-Werkzeug-doc-0.12.2-3.3 is installed OR python2-Werkzeug-0.12.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information nginx-1.14.2-6.3 is installed OR vim-plugin-nginx-1.14.2-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND squid-4.8-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-10.6-6 is installed OR postgresql10-contrib-10.6-6 is installed OR postgresql10-devel-10.6-6 is installed OR postgresql10-docs-10.6-6 is installed OR postgresql10-plperl-10.6-6 is installed OR postgresql10-plpython-10.6-6 is installed OR postgresql10-pltcl-10.6-6 is installed OR postgresql10-server-10.6-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.30-3.34 is installed OR tomcat-admin-webapps-9.0.30-3.34 is installed OR tomcat-el-3_0-api-9.0.30-3.34 is installed OR tomcat-jsp-2_3-api-9.0.30-3.34 is installed OR tomcat-lib-9.0.30-3.34 is installed OR tomcat-servlet-4_0-api-9.0.30-3.34 is installed OR tomcat-webapps-9.0.30-3.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-demo-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-devel-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-headless-1.8.0.151-27.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20190507-13.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-8-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND MozillaFirefox-52.4.0esr-109.6 is installed OR MozillaFirefox-translations-52.4.0esr-109.6 is installed OR libfreebl3-3.29.5-58.3 is installed OR libfreebl3-32bit-3.29.5-58.3 is installed OR libfreebl3-hmac-3.29.5-58.3 is installed OR libfreebl3-hmac-32bit-3.29.5-58.3 is installed OR libsoftokn3-3.29.5-58.3 is installed OR libsoftokn3-32bit-3.29.5-58.3 is installed OR libsoftokn3-hmac-3.29.5-58.3 is installed OR libsoftokn3-hmac-32bit-3.29.5-58.3 is installed OR mozilla-nss-3.29.5-58.3 is installed OR mozilla-nss-32bit-3.29.5-58.3 is installed OR mozilla-nss-certs-3.29.5-58.3 is installed OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed OR mozilla-nss-tools-3.29.5-58.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND MozillaFirefox-52.4.0esr-109.6 is installed OR MozillaFirefox-translations-52.4.0esr-109.6 is installed OR libfreebl3-3.29.5-58.3 is installed OR libfreebl3-32bit-3.29.5-58.3 is installed OR libfreebl3-hmac-3.29.5-58.3 is installed OR libfreebl3-hmac-32bit-3.29.5-58.3 is installed OR libsoftokn3-3.29.5-58.3 is installed OR libsoftokn3-32bit-3.29.5-58.3 is installed OR libsoftokn3-hmac-3.29.5-58.3 is installed OR libsoftokn3-hmac-32bit-3.29.5-58.3 is installed OR mozilla-nss-3.29.5-58.3 is installed OR mozilla-nss-32bit-3.29.5-58.3 is installed OR mozilla-nss-certs-3.29.5-58.3 is installed OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed OR mozilla-nss-tools-3.29.5-58.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_107-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_29-7-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_107-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_29-7-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND perl-DBI-1.628-5.6 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND perl-DBI-1.628-5.6 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libXcursor-1.1.14-4.6 is installed OR libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libXcursor-1.1.14-4.6 is installed OR libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libXcursor-1.1.14-4.6 is installed OR libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND opensc-0.13.0-3.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND opensc-0.13.0-3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND xorg-x11-server-1.19.6-4.8 is installed OR xorg-x11-server-extra-1.19.6-4.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS is installed AND xorg-x11-server-1.19.6-4.8 is installed OR xorg-x11-server-extra-1.19.6-4.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information kernel-default-3.12.39-47 is installed OR kernel-default-extra-3.12.39-47 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information flash-player-11.2.202.643-146 is installed OR flash-player-gnome-11.2.202.643-146 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information gnome-shell-3.20.4-77.7 is installed OR gnome-shell-calendar-3.20.4-77.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libpolkit0-32bit-0.113-5.15 is installed OR polkit-0.113-5.15 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information PackageKit-1.1.10-4.10 is installed OR PackageKit-gstreamer-plugin-1.1.10-4.10 is installed OR PackageKit-gtk3-module-1.1.10-4.10 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND NetworkManager-lang-1.10.6-5.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information xen-4.7.6_05-43.45 is installed OR xen-doc-html-4.7.6_05-43.45 is installed OR xen-libs-4.7.6_05-43.45 is installed OR xen-libs-32bit-4.7.6_05-43.45 is installed OR xen-tools-4.7.6_05-43.45 is installed OR xen-tools-domU-4.7.6_05-43.45 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed

BACK