Oval Definition:	oval:org.opensuse.security:def:51320
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues: - CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method (bsc#1168874). - CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images (bsc#1168874). - CVE-2020-6825: Fixed Memory safety bugs (bsc#1168874). - CVE-2020-6827: Custom Tabs could have the URI spoofed (bsc#1168874). - CVE-2020-6828: Preference overwrite via crafted Intent (bsc#1168874). Family: unix Class: patch Status: Reference(s): 1012382 1031392 1051510 1055120 1061840 1065729 1082519 1085030 1090078 1094244 1098782 1101669 1102495 1103269 1103405 1103587 1103636 1104888 1105190 1105323 1105795 1106105 1106191 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109244 1109333 1109336 1109337 1109603 1109806 1109859 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1140844 1140868 1152990 1152992 1152994 1152995 1153108 1156317 1157770 1159913 1162396 1164804 1165631 1168874 1171456 1171457 1171458 1171746 1172140 1172437 1172491 CVE-2009-2666 CVE-2010-1167 CVE-2010-4341 CVE-2011-1758 CVE-2011-1947 CVE-2011-3389 CVE-2012-1571 CVE-2012-3482 CVE-2012-6708 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2014-3710 CVE-2014-5044 CVE-2014-8116 CVE-2014-8117 CVE-2015-5276 CVE-2015-9251 CVE-2018-1000199 CVE-2018-10902 CVE-2018-10938 CVE-2018-14633 CVE-2018-17182 CVE-2019-10220 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-15239 CVE-2019-15666 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-5108 CVE-2019-9811 CVE-2020-10757 CVE-2020-10957 CVE-2020-10957 CVE-2020-10958 CVE-2020-10958 CVE-2020-10967 CVE-2020-10967 CVE-2020-13790 CVE-2020-1749 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 CVE-2020-8130 SUSE-SU-2018:2940-1 SUSE-SU-2018:3159-1 SUSE-SU-2019:1960-1 SUSE-SU-2019:3215-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:0971-1 SUSE-SU-2020:1379-1 SUSE-SU-2020:1380-1 SUSE-SU-2020:2569-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cups-2.2.7-lp150.1 is installed OR cups-client-2.2.7-lp150.1 is installed OR cups-config-2.2.7-lp150.1 is installed OR libcups2-2.2.7-lp150.1 is installed OR libcupscgi1-2.2.7-lp150.1 is installed OR libcupsimage2-2.2.7-lp150.1 is installed OR libcupsmime1-2.2.7-lp150.1 is installed OR libcupsppdc1-2.2.7-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xorg-x11-libXt-7.4-1.19 is installed OR xorg-x11-libXt-32bit-7.4-1.19 is installed OR xorg-x11-libXt-devel-7.4-1.19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.6.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.6.0esr-0.8 is installed OR libfreebl3-3.16.1-0.8 is installed OR libfreebl3-32bit-3.16.1-0.8 is installed OR libsoftokn3-3.16.1-0.8 is installed OR libsoftokn3-32bit-3.16.1-0.8 is installed OR mozilla-nspr-4.10.6-0.3 is installed OR mozilla-nspr-32bit-4.10.6-0.3 is installed OR mozilla-nss-3.16.1-0.8 is installed OR mozilla-nss-32bit-3.16.1-0.8 is installed OR mozilla-nss-tools-3.16.1-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libipa_hbac0-1.11.5.1-5 is installed OR libsss_idmap0-1.11.5.1-5 is installed OR python-sssd-config-1.11.5.1-5 is installed OR sssd-1.11.5.1-5 is installed OR sssd-32bit-1.11.5.1-5 is installed OR sssd-ad-1.11.5.1-5 is installed OR sssd-ipa-1.11.5.1-5 is installed OR sssd-krb5-1.11.5.1-5 is installed OR sssd-krb5-common-1.11.5.1-5 is installed OR sssd-ldap-1.11.5.1-5 is installed OR sssd-proxy-1.11.5.1-5 is installed OR sssd-tools-1.11.5.1-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cpp48-4.8.5-24 is installed OR gcc48-4.8.5-24 is installed OR gcc48-32bit-4.8.5-24 is installed OR gcc48-c++-4.8.5-24 is installed OR gcc48-gij-4.8.5-24 is installed OR gcc48-gij-32bit-4.8.5-24 is installed OR gcc48-info-4.8.5-24 is installed OR libasan0-4.8.5-24 is installed OR libasan0-32bit-4.8.5-24 is installed OR libgcj48-4.8.5-24 is installed OR libgcj48-32bit-4.8.5-24 is installed OR libgcj48-jar-4.8.5-24 is installed OR libgcj_bc1-4.8.5-24 is installed OR libstdc++48-devel-4.8.5-24 is installed OR libstdc++48-devel-32bit-4.8.5-24 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ghostscript-9.15-6 is installed OR ghostscript-x11-9.15-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND libjpeg-turbo-1.5.3-5.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-68.7.0-3.84 is installed OR MozillaFirefox-devel-68.7.0-3.84 is installed OR MozillaFirefox-translations-common-68.7.0-3.84 is installed OR MozillaFirefox-translations-other-68.7.0-3.84 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information kernel-docs-4.12.14-25.22 is installed OR kernel-obs-build-4.12.14-25.22 is installed OR kernel-source-4.12.14-25.22 is installed OR kernel-syms-4.12.14-25.22 is installed OR kernel-vanilla-4.12.14-25.22 is installed OR kernel-vanilla-base-4.12.14-25.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-4-10 is installed OR kernel-livepatch-SLE15_Update_0-4-10 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_10-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_3-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.10-11 is installed OR dovecot23-backend-mysql-2.3.10-11 is installed OR dovecot23-backend-pgsql-2.3.10-11 is installed OR dovecot23-backend-sqlite-2.3.10-11 is installed OR dovecot23-devel-2.3.10-11 is installed OR dovecot23-fts-2.3.10-11 is installed OR dovecot23-fts-lucene-2.3.10-11 is installed OR dovecot23-fts-solr-2.3.10-11 is installed OR dovecot23-fts-squat-2.3.10-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libksba8-1.3.0-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information apache2-2.4.16-20.10 is installed OR apache2-doc-2.4.16-20.10 is installed OR apache2-example-pages-2.4.16-20.10 is installed OR apache2-prefork-2.4.16-20.10 is installed OR apache2-utils-2.4.16-20.10 is installed OR apache2-worker-2.4.16-20.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libX11-1.6.2-12.5 is installed OR libX11-6-1.6.2-12.5 is installed OR libX11-6-32bit-1.6.2-12.5 is installed OR libX11-data-1.6.2-12.5 is installed OR libX11-xcb1-1.6.2-12.5 is installed OR libX11-xcb1-32bit-1.6.2-12.5 is installed OR libxcb-1.10-4.3 is installed OR libxcb-dri2-0-1.10-4.3 is installed OR libxcb-dri2-0-32bit-1.10-4.3 is installed OR libxcb-dri3-0-1.10-4.3 is installed OR libxcb-dri3-0-32bit-1.10-4.3 is installed OR libxcb-glx0-1.10-4.3 is installed OR libxcb-glx0-32bit-1.10-4.3 is installed OR libxcb-present0-1.10-4.3 is installed OR libxcb-present0-32bit-1.10-4.3 is installed OR libxcb-randr0-1.10-4.3 is installed OR libxcb-render0-1.10-4.3 is installed OR libxcb-render0-32bit-1.10-4.3 is installed OR libxcb-shape0-1.10-4.3 is installed OR libxcb-shm0-1.10-4.3 is installed OR libxcb-shm0-32bit-1.10-4.3 is installed OR libxcb-sync1-1.10-4.3 is installed OR libxcb-sync1-32bit-1.10-4.3 is installed OR libxcb-xf86dri0-1.10-4.3 is installed OR libxcb-xfixes0-1.10-4.3 is installed OR libxcb-xfixes0-32bit-1.10-4.3 is installed OR libxcb-xinerama0-1.10-4.3 is installed OR libxcb-xkb1-1.10-4.3 is installed OR libxcb-xkb1-32bit-1.10-4.3 is installed OR libxcb-xv0-1.10-4.3 is installed OR libxcb1-1.10-4.3 is installed OR libxcb1-32bit-1.10-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libXfont1-1.5.1-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information dovecot23-2.3.10-4.22 is installed OR dovecot23-backend-mysql-2.3.10-4.22 is installed OR dovecot23-backend-pgsql-2.3.10-4.22 is installed OR dovecot23-backend-sqlite-2.3.10-4.22 is installed OR dovecot23-devel-2.3.10-4.22 is installed OR dovecot23-fts-2.3.10-4.22 is installed OR dovecot23-fts-lucene-2.3.10-4.22 is installed OR dovecot23-fts-solr-2.3.10-4.22 is installed OR dovecot23-fts-squat-2.3.10-4.22 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.8.0-3.46 is installed OR MozillaThunderbird-translations-common-60.8.0-3.46 is installed OR MozillaThunderbird-translations-other-60.8.0-3.46 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-tablib-0.9.11-3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.3 is installed OR pdns-backend-mysql-4.1.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed
BACK