OVAL Reference oval:org.opensuse.security:def:51306

Oval Definition:

oval:org.opensuse.security:def:51306

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.5.0 ESR * Fixed: Various stability and security fixes - Mozilla Firefox ESR68.5 MFSA 2020-06 (bsc#1163368) * CVE-2020-6796 (bmo#1610426) Missing bounds check on shared memory read in the parent process * CVE-2020-6797 (bmo#1596668) Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 (bmo#1602944) Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6799 (bmo#1606596) Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543, bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
Family:	unix	Class:	patch
Status:		Reference(s):	1084671 1092920 1096405 1096406 1096407 1096408 1100397 1106383 1123886 1125230 1133495 1149841 1151021 1151377 1154256 1155207 1155574 1156213 1156482 1158485 1159814 1161436 1162108 1163368 1170595 1171252 1171254 1171863 1171864 1171866 1172348 1177513 1177729 1178387 CVE-2010-1172 CVE-2010-4352 CVE-2012-3524 CVE-2013-0292 CVE-2013-1992 CVE-2013-2168 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-7824 CVE-2014-8148 CVE-2014-8169 CVE-2015-0245 CVE-2018-15587 CVE-2018-4180 CVE-2018-4181 CVE-2018-4182 CVE-2018-4183 CVE-2019-14835 CVE-2019-20386 CVE-2020-10543 CVE-2020-10878 CVE-2020-11651 CVE-2020-11652 CVE-2020-12351 CVE-2020-12653 CVE-2020-12654 CVE-2020-12723 CVE-2020-1712 CVE-2020-25645 CVE-2020-25692 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 SUSE-SU-2018:2172-1 SUSE-SU-2019:1266-1 SUSE-SU-2019:3212-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:0383-1 SUSE-SU-2020:1151-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1682-2 SUSE-SU-2020:3313-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information bash-4.4-lp150.7 is installed OR bash-doc-4.4-lp150.7 is installed OR bash-lang-4.4-lp150.7 is installed OR libreadline7-7.0-lp150.7 is installed OR readline-doc-7.0-lp150.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xen-4.1.4_02-0.5 is installed OR xen-doc-html-4.1.4_02-0.5 is installed OR xen-doc-pdf-4.1.4_02-0.5 is installed OR xen-kmp-default-4.1.4_02_3.0.58_0.6.6-0.5 is installed OR xen-kmp-pae-4.1.4_02_3.0.58_0.6.6-0.5 is installed OR xen-kmp-trace-4.1.4_02_3.0.58_0.6.6-0.5 is installed OR xen-libs-4.1.4_02-0.5 is installed OR xen-libs-32bit-4.1.4_02-0.5 is installed OR xen-tools-4.1.4_02-0.5 is installed OR xen-tools-domU-4.1.4_02-0.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-demo-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-devel-1.7.0.85-0.11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libdmx1-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND autofs-5.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed OR typelib-1_0-EvinceDocument-3_0-3.20.1-5 is installed OR typelib-1_0-EvinceView-3_0-3.20.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information expat-2.1.0-21.3 is installed OR libexpat1-2.1.0-21.3 is installed OR libexpat1-32bit-2.1.0-21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information perl-5.26.1-7.12 is installed OR perl-32bit-5.26.1-7.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-68.5.0-3.72 is installed OR MozillaFirefox-devel-68.5.0-3.72 is installed OR MozillaFirefox-translations-common-68.5.0-3.72 is installed OR MozillaFirefox-translations-other-68.5.0-3.72 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information cups-2.2.7-3.3 is installed OR cups-ddk-2.2.7-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information openldap2-2.4.46-9.40 is installed OR openldap2-back-meta-2.4.46-9.40 is installed OR openldap2-back-perl-2.4.46-9.40 is installed OR openldap2-ppolicy-check-password-1.2-9.40 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-4-2 is installed OR kernel-livepatch-SLE15_Update_9-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information postgresql-10-8.3 is installed OR postgresql-contrib-10-8.3 is installed OR postgresql-devel-10-8.3 is installed OR postgresql-docs-10-8.3 is installed OR postgresql-plperl-10-8.3 is installed OR postgresql-plpython-10-8.3 is installed OR postgresql-pltcl-10-8.3 is installed OR postgresql-server-10-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libgcrypt20-1.6.1-16 is installed OR libgcrypt20-32bit-1.6.1-16 is installed OR libgcrypt20-hmac-1.6.1-16 is installed OR libgcrypt20-hmac-32bit-1.6.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed OR libnautilus-extension1-3.20.3-23.6 is installed OR nautilus-3.20.3-23.6 is installed OR nautilus-lang-3.20.3-23.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libFLAC++6-1.3.0-11 is installed OR libFLAC8-1.3.0-11 is installed OR libFLAC8-32bit-1.3.0-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information python2-salt-2019.2.0-5.67 is installed OR python3-salt-2019.2.0-5.67 is installed OR salt-2019.2.0-5.67 is installed OR salt-api-2019.2.0-5.67 is installed OR salt-bash-completion-2019.2.0-5.67 is installed OR salt-cloud-2019.2.0-5.67 is installed OR salt-doc-2019.2.0-5.67 is installed OR salt-fish-completion-2019.2.0-5.67 is installed OR salt-master-2019.2.0-5.67 is installed OR salt-minion-2019.2.0-5.67 is installed OR salt-proxy-2019.2.0-5.67 is installed OR salt-ssh-2019.2.0-5.67 is installed OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed OR salt-syndic-2019.2.0-5.67 is installed OR salt-zsh-completion-2019.2.0-5.67 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed

BACK