OVAL Reference oval:org.opensuse.security:def:50724

Oval Definition:

oval:org.opensuse.security:def:50724

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Moderate)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to NSS 3.47.1: Security issues fixed: - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - CVE-2019-11745: EncryptUpdate should use maxout, not block size (bsc#1158527). - CVE-2019-11727: Fixed vulnerability sign CertificateVerify with PKCS#1 v1.5 signatures issue (bsc#1141322). mozilla-nspr was updated to version 4.23: - Whitespace in C files was cleaned up and no longer uses tab characters for indenting.
Family:	unix	Class:	patch
Status:		Reference(s):	1046540 1050319 1050536 1050540 1051510 1055120 1065600 1066674 1067126 1067906 1076830 1079524 1083647 1084760 1084831 1086283 1086288 1094825 1095805 1099125 1100132 1102881 1103308 1103543 1104731 1105025 1105536 1106105 1106110 1106237 1106240 1106838 1107685 1108241 1108377 1108468 1108828 1108841 1108870 1109151 1109158 1109217 1109330 1109739 1109784 1109806 1109818 1109907 1109911 1109915 1109919 1109951 1110006 1110096 1110538 1110561 1110921 1111028 1111076 1111506 1111806 1111819 1111830 1111834 1111841 1111870 1111901 1111904 1111928 1111983 1112170 1112173 1112208 1112219 1112221 1112246 1112372 1112514 1112554 1112708 1112710 1112711 1112712 1112713 1112731 1112732 1112733 1112734 1112735 1112736 1112738 1112739 1112740 1112741 1112743 1112745 1112746 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113257 1113284 1132665 1134689 1138034 1140750 1141322 1148987 1153108 1155338 1155339 1156321 1158527 1159819 1160968 1161074 1161312 1166238 1171921 1172356 1173159 1173580 1174538 1174543 1175476 1175568 1175674 CVE-2017-16533 CVE-2017-18224 CVE-2018-18386 CVE-2018-18445 CVE-2018-18508 CVE-2019-10130 CVE-2019-10164 CVE-2019-10220 CVE-2019-11745 CVE-2019-13272 CVE-2019-13314 CVE-2019-13627 CVE-2019-14562 CVE-2019-17006 CVE-2019-20503 CVE-2020-10730 CVE-2020-10753 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-1699 CVE-2020-1700 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 CVE-2020-4044 CVE-2020-6463 CVE-2020-6514 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2020-8027 SUSE-SU-2018:3593-1 SUSE-SU-2019:1810-1 SUSE-SU-2019:3248-1 SUSE-SU-2019:3392-1 SUSE-SU-2019:3395-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0296-1 SUSE-SU-2020:0686-1 SUSE-SU-2020:1933-1 SUSE-SU-2020:2067-1 SUSE-SU-2020:2712-2 SUSE-SU-2020:2713-1 SUSE-SU-2020:3045-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bytefx-data-mysql-2.6.7-0.9 is installed OR ibm-data-db2-2.6.7-0.9 is installed OR mono-core-2.6.7-0.9 is installed OR mono-data-2.6.7-0.9 is installed OR mono-data-firebird-2.6.7-0.9 is installed OR mono-data-oracle-2.6.7-0.9 is installed OR mono-data-postgresql-2.6.7-0.9 is installed OR mono-data-sqlite-2.6.7-0.9 is installed OR mono-data-sybase-2.6.7-0.9 is installed OR mono-devel-2.6.7-0.9 is installed OR mono-extras-2.6.7-0.9 is installed OR mono-jscript-2.6.7-0.9 is installed OR mono-locale-extras-2.6.7-0.9 is installed OR mono-nunit-2.6.7-0.9 is installed OR mono-wcf-2.6.7-0.9 is installed OR mono-web-2.6.7-0.9 is installed OR mono-winforms-2.6.7-0.9 is installed OR monodoc-core-2.6.7-0.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND kvm-1.4.2-35 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libmysqlclient18-10.0.11-6 is installed OR libmysqlclient18-32bit-10.0.11-6 is installed OR libmysqlclient_r18-10.0.11-6 is installed OR libmysqlclient_r18-32bit-10.0.11-6 is installed OR mariadb-10.0.11-6 is installed OR mariadb-client-10.0.11-6 is installed OR mariadb-errormessages-10.0.11-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information guile-2.0.9-8 is installed OR guile-modules-2_0-2.0.9-8 is installed OR libguile-2_0-22-2.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cyrus-sasl-2.1.26-8.7 is installed OR cyrus-sasl-32bit-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed OR cyrus-sasl-plain-2.1.26-8.7 is installed OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed OR libsasl2-3-2.1.26-8.7 is installed OR libsasl2-3-32bit-2.1.26-8.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.9-4.13 is installed OR postgresql10-test-10.9-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libfreebl3-3.47.1-3.22 is installed OR libfreebl3-32bit-3.47.1-3.22 is installed OR libsoftokn3-3.47.1-3.22 is installed OR libsoftokn3-32bit-3.47.1-3.22 is installed OR mozilla-nspr-4.23-3.9 is installed OR mozilla-nspr-32bit-4.23-3.9 is installed OR mozilla-nspr-devel-4.23-3.9 is installed OR mozilla-nss-3.47.1-3.22 is installed OR mozilla-nss-32bit-3.47.1-3.22 is installed OR mozilla-nss-certs-3.47.1-3.22 is installed OR mozilla-nss-certs-32bit-3.47.1-3.22 is installed OR mozilla-nss-devel-3.47.1-3.22 is installed OR mozilla-nss-sysinit-3.47.1-3.22 is installed OR mozilla-nss-tools-3.47.1-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-livepatch-4.12.14-25.25 is installed OR kernel-livepatch-4_12_14-25_25-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_7-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-8-22 is installed OR kernel-livepatch-SLE15-SP1_Update_0-8-22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libgcrypt-1.8.2-8.12 is installed OR libgcrypt-cavs-1.8.2-8.12 is installed OR libgcrypt-devel-32bit-1.8.2-8.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information xen-4.13.1_06-3.7 is installed OR xen-devel-4.13.1_06-3.7 is installed OR xen-doc-html-4.13.1_06-3.7 is installed OR xen-libs-4.13.1_06-3.7 is installed OR xen-libs-32bit-4.13.1_06-3.7 is installed OR xen-tools-4.13.1_06-3.7 is installed OR xen-tools-domU-4.13.1_06-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information ldb-1.4.6-3.5 is installed OR python-ldb-1.4.6-3.5 is installed OR python-ldb-devel-1.4.6-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information python3-virt-bootstrap-1.0.0-5.3 is installed OR virt-bootstrap-1.0.0-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND ft2demos-2.5.5-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-9-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information fetchmail-6.3.26-12 is installed OR fetchmailconf-6.3.26-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.55-38.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND mailman-2.1.17-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cups-filters-1.0.58-19.2 is installed OR cups-filters-cups-browsed-1.0.58-19.2 is installed OR cups-filters-foomatic-rip-1.0.58-19.2 is installed OR cups-filters-ghostscript-1.0.58-19.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libcares2-1.9.1-9.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-11-openjdk-11.0.6.0-3.39 is installed OR java-11-openjdk-demo-11.0.6.0-3.39 is installed OR java-11-openjdk-devel-11.0.6.0-3.39 is installed OR java-11-openjdk-headless-11.0.6.0-3.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.26.4-3.43 is installed OR libwebkit2gtk-4_0-37-2.26.4-3.43 is installed OR libwebkit2gtk3-lang-2.26.4-3.43 is installed OR webkit2gtk-4_0-injected-bundles-2.26.4-3.43 is installed OR webkit2gtk3-2.26.4-3.43 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.2.1-3.58 is installed OR MozillaThunderbird-translations-common-68.2.1-3.58 is installed OR MozillaThunderbird-translations-other-68.2.1-3.58 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.11.0-3.91 is installed OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.9 is installed OR kernel-default-extra-5.3.18-24.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ImageMagick-6.8.8.1-71.108 is installed OR ImageMagick-config-6-SUSE-6.8.8.1-71.108 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.108 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.108 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.108 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND haproxy-1.6.11-11.3 is installed

BACK