OVAL Reference oval:org.opensuse.security:def:50522

Oval Definition:

oval:org.opensuse.security:def:50522

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Moderate)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to NSS 3.47.1: Security issues fixed: - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - CVE-2019-11745: EncryptUpdate should use maxout, not block size (bsc#1158527). - CVE-2019-11727: Fixed vulnerability sign CertificateVerify with PKCS#1 v1.5 signatures issue (bsc#1141322). mozilla-nspr was updated to version 4.23: - Whitespace in C files was cleaned up and no longer uses tab characters for indenting.
Family:	unix	Class:	patch
Status:		Reference(s):	1044231 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1051858 1055186 1056686 1060463 1061840 1064802 1065600 1065729 1066129 1073513 1082635 1083647 1085030 1086323 1087092 1089644 1090631 1093205 1093447 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1103990 1103992 1104353 1104745 1109158 1109837 1109911 1111666 1111974 1112178 1112374 1113956 1114279 1114685 1117665 1119454 1119461 1119465 1119680 1120386 1123034 1123080 1127611 1133021 1133140 1134090 1134303 1135642 1135854 1135873 1135967 1136157 1137040 1137799 1138190 1140090 1140709 1140729 1140845 1140868 1140883 1141322 1141600 1141895 1142635 1142667 1143706 1144333 1144338 1144375 1144449 1144903 1145051 1145099 1146539 1146612 1148410 1149119 1150452 1150457 1150465 1150875 1151508 1152624 1152685 1152782 1152788 1152791 1153108 1153112 1153158 1153236 1153263 1153476 1153509 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154354 1154372 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1154956 1155178 1155179 1155184 1155186 1155346 1155671 1155692 1155836 1155982 1156187 1157424 1157770 1157775 1158101 1158187 1158527 1158809 1158983 1159198 1159285 1159819 1160398 1160659 1161167 1161561 1161951 1162171 1162929 1162931 1164078 1164507 1164777 1164780 1164893 1165019 1165111 1165182 1165185 1165211 1165404 1165488 1165527 1165741 1165813 1165823 1165873 1165929 1165949 1165950 1165980 1165984 1165985 1166003 1166101 1166102 1166103 1166104 1166632 1166730 1166731 1166732 1166733 1166734 1166735 1166982 1167005 1167216 1167290 1167316 1167421 1167423 1167627 1167629 1168075 1168273 1168276 1168295 1168367 1168424 1168443 1168552 1168829 1168854 1169013 1169307 1169308 1169511 1170452 1171352 1171477 1174321 1175070 1175071 1175074 1175476 1176012 1176382 CVE-2018-10196 CVE-2018-12207 CVE-2018-18508 CVE-2019-10220 CVE-2019-10220 CVE-2019-11135 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-11745 CVE-2019-12838 CVE-2019-14562 CVE-2019-1551 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17006 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-18805 CVE-2019-19768 CVE-2019-19770 CVE-2019-3701 CVE-2019-9458 CVE-2019-9811 CVE-2020-0569 CVE-2020-10722 CVE-2020-10723 CVE-2020-10724 CVE-2020-10725 CVE-2020-10726 CVE-2020-10942 CVE-2020-11494 CVE-2020-11984 CVE-2020-11993 CVE-2020-12105 CVE-2020-14381 CVE-2020-15103 CVE-2020-25212 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-8647 CVE-2020-8649 CVE-2020-8834 CVE-2020-9383 CVE-2020-9490 SUSE-SU-2019:1869-1 SUSE-SU-2019:2229-1 SUSE-SU-2019:2951-1 SUSE-SU-2019:3216-1 SUSE-SU-2019:3395-1 SUSE-SU-2020:0002-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:1123-1 SUSE-SU-2020:1335-1 SUSE-SU-2020:1337-1 SUSE-SU-2020:1569-2 SUSE-SU-2020:2344-1 SUSE-SU-2020:2346-1 SUSE-SU-2020:3188-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND kvm-1.4.2-0.22.34 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information giflib-4.1.6-13 is installed OR giflib-32bit-4.1.6-13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gd-2.1.0-23 is installed OR gd-32bit-2.1.0-23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libfreebl3-3.29.5-58.12 is installed OR libfreebl3-32bit-3.29.5-58.12 is installed OR libsoftokn3-3.29.5-58.12 is installed OR libsoftokn3-32bit-3.29.5-58.12 is installed OR mozilla-nss-3.29.5-58.12 is installed OR mozilla-nss-32bit-3.29.5-58.12 is installed OR mozilla-nss-certs-3.29.5-58.12 is installed OR mozilla-nss-certs-32bit-3.29.5-58.12 is installed OR mozilla-nss-sysinit-3.29.5-58.12 is installed OR mozilla-nss-sysinit-32bit-3.29.5-58.12 is installed OR mozilla-nss-tools-3.29.5-58.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libfreebl3-3.47.1-3.22 is installed OR libfreebl3-32bit-3.47.1-3.22 is installed OR libfreebl3-hmac-3.47.1-3.22 is installed OR libfreebl3-hmac-32bit-3.47.1-3.22 is installed OR libsoftokn3-3.47.1-3.22 is installed OR libsoftokn3-32bit-3.47.1-3.22 is installed OR libsoftokn3-hmac-3.47.1-3.22 is installed OR libsoftokn3-hmac-32bit-3.47.1-3.22 is installed OR mozilla-nspr-4.23-3.9 is installed OR mozilla-nspr-32bit-4.23-3.9 is installed OR mozilla-nspr-devel-4.23-3.9 is installed OR mozilla-nss-3.47.1-3.22 is installed OR mozilla-nss-32bit-3.47.1-3.22 is installed OR mozilla-nss-certs-3.47.1-3.22 is installed OR mozilla-nss-certs-32bit-3.47.1-3.22 is installed OR mozilla-nss-devel-3.47.1-3.22 is installed OR mozilla-nss-sysinit-3.47.1-3.22 is installed OR mozilla-nss-tools-3.47.1-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_35-default-3-2 is installed OR kernel-livepatch-SLE15_Update_14-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_56-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_15-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libQt5Bootstrap-devel-static-5.9.4-8.21 is installed OR libqt5-qtbase-5.9.4-8.21 is installed OR libqt5-qtbase-examples-5.9.4-8.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information MozillaFirefox-60.8.0-3.51 is installed OR MozillaFirefox-branding-upstream-60.8.0-3.51 is installed OR MozillaFirefox-buildsymbols-60.8.0-3.51 is installed OR MozillaFirefox-devel-60.8.0-3.51 is installed OR libfreebl3-hmac-32bit-3.44.1-3.16 is installed OR libsoftokn3-hmac-32bit-3.44.1-3.16 is installed OR mozilla-nss-3.44.1-3.16 is installed OR mozilla-nss-sysinit-32bit-3.44.1-3.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ovmf-201911-7.5 is installed OR qemu-ovmf-x86_64-debug-201911-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.23 is installed OR dlm-kmp-rt-4.12.14-14.23 is installed OR gfs2-kmp-rt-4.12.14-14.23 is installed OR kernel-devel-rt-4.12.14-14.23 is installed OR kernel-rt-4.12.14-14.23 is installed OR kernel-rt-base-4.12.14-14.23 is installed OR kernel-rt-devel-4.12.14-14.23 is installed OR kernel-rt_debug-4.12.14-14.23 is installed OR kernel-rt_debug-devel-4.12.14-14.23 is installed OR kernel-source-rt-4.12.14-14.23 is installed OR kernel-syms-rt-4.12.14-14.23 is installed OR ocfs2-kmp-rt-4.12.14-14.23 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dpdk-18.11.3-4.6 is installed OR dpdk-devel-18.11.3-4.6 is installed OR dpdk-kmp-default-18.11.3_k4.12.14_197.40-4.6 is installed OR dpdk-tools-18.11.3-4.6 is installed OR libdpdk-18_11-18.11.3-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-2-4 is installed OR kgraft-patch-3_12_74-60_64_60-xen-2-4 is installed OR kgraft-patch-SLE12-SP1_Update_21-2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.2-3.43 is installed OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.24 is installed OR kernel-default-extra-5.3.18-24.24 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-heat-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev9-1 is installed OR openstack-heat-engine-5.0.2~a0~dev9-1 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev9-1 is installed OR python-heat-5.0.2~a0~dev9-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.8 is installed

BACK