OVAL Reference oval:org.opensuse.security:def:46323

Oval Definition:

oval:org.opensuse.security:def:46323

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Moderate)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes (bsc#1174538) * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks internal address to peer * CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy * CVE-2020-15653: Bypassing iframe sandbox when allowing popups * CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture * CVE-2020-15656: Type confusion for special arguments in IonMonkey * CVE-2020-15658: Overriding file type when saving to disk * CVE-2020-15657: DLL hijacking due to incorrect loading path * CVE-2020-15654: Custom cursor can overlay user interface * CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and Firefox ESR 78.1
Family:	unix	Class:	patch
Status:		Reference(s):	1044946 1072947 1075775 1077535 1078662 1079512 1080740 1084300 1088182 1088932 1092278 1092279 1092280 1095611 1096060 1096061 1096209 1097693 1098155 1101999 1102530 1104169 1110687 1118987 1128712 1130721 1133037 1134598 1141619 1144902 1158763 1162197 1162200 1165439 1168699 1172524 1173948 1174538 959714 CVE-2012-5784 CVE-2014-3596 CVE-2017-1000381 CVE-2017-13884 CVE-2017-13885 CVE-2017-6318 CVE-2017-7153 CVE-2017-7160 CVE-2017-7161 CVE-2017-7165 CVE-2018-1152 CVE-2018-11646 CVE-2018-11712 CVE-2018-11713 CVE-2018-11805 CVE-2018-11813 CVE-2018-12911 CVE-2018-14498 CVE-2018-17828 CVE-2018-4088 CVE-2018-4096 CVE-2018-4101 CVE-2018-4113 CVE-2018-4114 CVE-2018-4117 CVE-2018-4118 CVE-2018-4119 CVE-2018-4120 CVE-2018-4121 CVE-2018-4122 CVE-2018-4125 CVE-2018-4127 CVE-2018-4128 CVE-2018-4129 CVE-2018-4133 CVE-2018-4146 CVE-2018-4161 CVE-2018-4162 CVE-2018-4163 CVE-2018-4165 CVE-2018-4190 CVE-2018-4199 CVE-2018-4200 CVE-2018-4204 CVE-2018-4218 CVE-2018-4222 CVE-2018-4232 CVE-2018-4233 CVE-2018-4246 CVE-2018-7738 CVE-2019-1010006 CVE-2019-10218 CVE-2019-11459 CVE-2019-1787 CVE-2019-1788 CVE-2019-1789 CVE-2019-18900 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-1730 CVE-2020-1747 CVE-2020-1930 CVE-2020-1931 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2017:1792-1 SUSE-SU-2018:3379-1 SUSE-SU-2018:3387-1 SUSE-SU-2018:3926-1 SUSE-SU-2019:0897-1 SUSE-SU-2019:1111-1 SUSE-SU-2019:1382-1 SUSE-SU-2019:2080-1 SUSE-SU-2019:2890-1 SUSE-SU-2020:0968-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:2359-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information curl-7.59.0-lp150.1 is installed OR libcurl4-7.59.0-lp150.1 is installed OR libcurl4-32bit-7.59.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information xorg-x11-server-7.6_1.18.3-28 is installed OR xorg-x11-server-extra-7.6_1.18.3-28 is installed OR xorg-x11-server-sdk-7.6_1.18.3-28 is installed OR xorg-x11-server-source-7.6_1.18.3-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.10-0.3 is installed OR MozillaFirefox-translations-10.0.10-0.3 is installed OR mozilla-nspr-4.9.3-0.2 is installed OR mozilla-nspr-32bit-4.9.3-0.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.5.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.5.0esr-0.8 is installed OR libfreebl3-3.16-0.8 is installed OR libfreebl3-32bit-3.16-0.8 is installed OR libsoftokn3-3.16-0.8 is installed OR libsoftokn3-32bit-3.16-0.8 is installed OR mozilla-nspr-4.10.4-0.3 is installed OR mozilla-nspr-32bit-4.10.4-0.3 is installed OR mozilla-nss-3.16-0.8 is installed OR mozilla-nss-32bit-3.16-0.8 is installed OR mozilla-nss-tools-3.16-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libdmx1-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gd-2.1.0-5 is installed OR gd-32bit-2.1.0-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information empathy-3.12.13-8.3 is installed OR empathy-lang-3.12.13-8.3 is installed OR telepathy-mission-control-plugin-goa-3.12.13-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND djvulibre-3.5.27-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information apparmor-abstractions-2.12-5 is installed OR apparmor-docs-2.12-5 is installed OR apparmor-parser-2.12-5 is installed OR apparmor-parser-lang-2.12-5 is installed OR apparmor-profiles-2.12-5 is installed OR apparmor-utils-2.12-5 is installed OR apparmor-utils-lang-2.12-5 is installed OR pam_apparmor-2.12-5 is installed OR pam_apparmor-32bit-2.12-5 is installed OR perl-apparmor-2.12-5 is installed OR python3-apparmor-2.12-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND dstat-0.7.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information evince-3.26.0+20180128.1bd86963-2 is installed OR evince-devel-3.26.0+20180128.1bd86963-2 is installed OR evince-lang-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-djvudocument-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-dvidocument-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-tiffdocument-3.26.0+20180128.1bd86963-2 is installed OR evince-plugin-xpsdocument-3.26.0+20180128.1bd86963-2 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-2 is installed OR libevview3-3-3.26.0+20180128.1bd86963-2 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-2 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-2 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gd-2.2.5-4.6 is installed OR gd-devel-2.2.5-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information ocaml-4.05.0-4 is installed OR ocaml-compiler-libs-4.05.0-4 is installed OR ocaml-compiler-libs-devel-4.05.0-4 is installed OR ocaml-ocamldoc-4.05.0-4 is installed OR ocaml-rpm-macros-4.05.0-4 is installed OR ocaml-runtime-4.05.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-4-2 is installed OR kernel-livepatch-SLE15_Update_9-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_37-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_10-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information polkit-0.114-3.6 is installed OR polkit-doc-0.114-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-3.30 is installed OR java-1_8_0-ibm-32bit-1.8.0_sr6.0-3.30 is installed OR java-1_8_0-ibm-demo-1.8.0_sr6.0-3.30 is installed OR java-1_8_0-ibm-devel-32bit-1.8.0_sr6.0-3.30 is installed OR java-1_8_0-ibm-src-1.8.0_sr6.0-3.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.16 is installed OR kernel-azure-base-4.12.14-8.16 is installed OR kernel-azure-devel-4.12.14-8.16 is installed OR kernel-devel-azure-4.12.14-8.16 is installed OR kernel-source-azure-4.12.14-8.16 is installed OR kernel-syms-azure-4.12.14-8.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.149.9593f64a5c3-1 is installed OR samba-ad-dc-4.9.5+git.149.9593f64a5c3-1 is installed OR samba-dsdb-modules-4.9.5+git.149.9593f64a5c3-1 is installed OR samba-libs-python-4.9.5+git.149.9593f64a5c3-1 is installed OR samba-python-4.9.5+git.149.9593f64a5c3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libmysqld-devel-10.2.15-1 is installed OR libmysqld19-10.2.15-1 is installed OR mariadb-10.2.15-1 is installed OR mariadb-client-10.2.15-1 is installed OR mariadb-errormessages-10.2.15-1 is installed OR mariadb-tools-10.2.15-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.22 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.22 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.1-1 is installed OR nodejs8-devel-8.11.1-1 is installed OR nodejs8-docs-8.11.1-1 is installed OR npm8-8.11.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND xalan-j2-2.7.2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dovecot22-2.2.13-2 is installed OR dovecot22-backend-mysql-2.2.13-2 is installed OR dovecot22-backend-pgsql-2.2.13-2 is installed OR dovecot22-backend-sqlite-2.2.13-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND MozillaFirefox-78.1.0-112.8 is installed OR MozillaFirefox-devel-78.1.0-112.8 is installed OR MozillaFirefox-translations-common-78.1.0-112.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND MozillaFirefox-78.1.0-112.8 is installed OR MozillaFirefox-devel-78.1.0-112.8 is installed OR MozillaFirefox-translations-common-78.1.0-112.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND perl-Mail-SpamAssassin-3.4.2-44.8 is installed OR spamassassin-3.4.2-44.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND perl-Mail-SpamAssassin-3.4.2-44.8 is installed OR spamassassin-3.4.2-44.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bluez-5.13-5.4 is installed OR libbluetooth3-5.13-5.4 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND libzypp-16.21.2-2.45 is installed OR libzypp-devel-16.21.2-2.45 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND libzypp-16.21.2-2.45 is installed OR libzypp-devel-16.21.2-2.45 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information freeradius-server-3.0.16-3.6 is installed OR freeradius-server-devel-3.0.16-3.6 is installed OR freeradius-server-krb5-3.0.16-3.6 is installed OR freeradius-server-ldap-3.0.16-3.6 is installed OR freeradius-server-libs-3.0.16-3.6 is installed OR freeradius-server-mysql-3.0.16-3.6 is installed OR freeradius-server-perl-3.0.16-3.6 is installed OR freeradius-server-postgresql-3.0.16-3.6 is installed OR freeradius-server-python-3.0.16-3.6 is installed OR freeradius-server-sqlite-3.0.16-3.6 is installed OR freeradius-server-utils-3.0.16-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libcares2-1.9.1-8 is installed OR libcares2-32bit-1.9.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information libuuid-devel-2.29.2-3.12 is installed OR util-linux-2.29.2-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information dia-0.97.3-17.4 is installed OR dia-lang-0.97.3-17.4 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.29 is installed OR kernel-default-extra-4.12.14-197.29 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND sudo-1.8.20p2-3.14 is installed

BACK