Oval Definition:oval:org.opensuse.security:def:5169
Revision Date:2021-12-12Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:unixClass:patch
Status:Reference(s):1172461
1172506
1174117
1174121
1193321
1193485
CVE-2006-7250
CVE-2008-2109
CVE-2008-5984
CVE-2009-0368
CVE-2009-0590
CVE-2009-0591
CVE-2009-0789
CVE-2009-1377
CVE-2009-1378
CVE-2009-1379
CVE-2009-1386
CVE-2009-1387
CVE-2009-2285
CVE-2009-2347
CVE-2009-3245
CVE-2009-3555
CVE-2009-4355
CVE-2009-5146
CVE-2010-0740
CVE-2010-2065
CVE-2010-2067
CVE-2010-2233
CVE-2010-2891
CVE-2010-2939
CVE-2010-3864
CVE-2010-4180
CVE-2010-4252
CVE-2010-4523
CVE-2010-4665
CVE-2011-0014
CVE-2011-0192
CVE-2011-1167
CVE-2011-3210
CVE-2011-4108
CVE-2011-4109
CVE-2011-4354
CVE-2011-4576
CVE-2011-4577
CVE-2011-4619
CVE-2011-5095
CVE-2012-0050
CVE-2012-0884
CVE-2012-1165
CVE-2012-1173
CVE-2012-2110
CVE-2012-2113
CVE-2012-2131
CVE-2012-2141
CVE-2012-2333
CVE-2012-3401
CVE-2012-4564
CVE-2012-4929
CVE-2013-0166
CVE-2013-0169
CVE-2013-1960
CVE-2013-1961
CVE-2013-1982
CVE-2013-2001
CVE-2013-2062
CVE-2013-2492
CVE-2013-4231
CVE-2013-4232
CVE-2013-4243
CVE-2013-4244
CVE-2014-0076
CVE-2014-0221
CVE-2014-0224
CVE-2014-0250
CVE-2014-0791
CVE-2014-2284
CVE-2014-2285
CVE-2014-3470
CVE-2014-3505
CVE-2014-3506
CVE-2014-3507
CVE-2014-3508
CVE-2014-3510
CVE-2014-3565
CVE-2014-3566
CVE-2014-3567
CVE-2014-3568
CVE-2014-3570
CVE-2014-3571
CVE-2014-3572
CVE-2014-8127
CVE-2014-8128
CVE-2014-8129
CVE-2014-8130
CVE-2014-8275
CVE-2014-9645
CVE-2014-9655
CVE-2015-0204
CVE-2015-0205
CVE-2015-0209
CVE-2015-0286
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0292
CVE-2015-0293
CVE-2015-1547
CVE-2015-1788
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-3216
CVE-2015-4000
CVE-2015-5621
CVE-2020-13777
CVE-2020-13934
CVE-2020-13935
CVE-2021-43536
CVE-2021-43537
CVE-2021-43538
CVE-2021-43539
CVE-2021-43541
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
SUSE-SU-2020:1584-1
SUSE-SU-2020:2045-1
SUSE-SU-2021:4000-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Real Time Extension 12 SP3
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • python-keystoneclient-1.0.0-16.1 is installed
  • OR python-keystoneclient-doc-1.0.0-16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • ghostscript-fonts-other-8.62-32.34.1 is installed
  • OR ghostscript-fonts-rus-8.62-32.34.1 is installed
  • OR ghostscript-fonts-std-8.62-32.34.1 is installed
  • OR ghostscript-library-8.62-32.34.1 is installed
  • OR ghostscript-omni-8.62-32.34.1 is installed
  • OR ghostscript-x11-8.62-32.34.1 is installed
  • OR libgimpprint-4.2.7-32.34.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.535-0.20.1 is installed
  • OR flash-player-gnome-11.2.202.535-0.20.1 is installed
  • OR flash-player-kde4-11.2.202.535-0.20.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xen-4.4.2_12-23.1 is installed
  • OR xen-doc-html-4.4.2_12-23.1 is installed
  • OR xen-kmp-default-4.4.2_12_3.0.101_63-23.1 is installed
  • OR xen-kmp-pae-4.4.2_12_3.0.101_63-23.1 is installed
  • OR xen-libs-4.4.2_12-23.1 is installed
  • OR xen-libs-32bit-4.4.2_12-23.1 is installed
  • OR xen-tools-4.4.2_12-23.1 is installed
  • OR xen-tools-domU-4.4.2_12-23.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libXext6-1.3.2-3 is installed
  • OR libXext6-32bit-1.3.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND busybox-1.21.1-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • bind-libs-9.9.9P1-46 is installed
  • OR bind-libs-32bit-9.9.9P1-46 is installed
  • OR bind-utils-9.9.9P1-46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-70 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-70 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-4-2.2 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed
  • OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • corosync-2.3.6-9.13 is installed
  • OR libcorosync4-2.3.6-9.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • corosync-2.3.6-9.13 is installed
  • OR libcorosync4-2.3.6-9.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.13 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.13 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed
  • AND
  • gnutls-3.6.7-6.29 is installed
  • OR libgnutls-devel-3.6.7-6.29 is installed
  • OR libgnutls30-3.6.7-6.29 is installed
  • OR libgnutls30-32bit-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
  • OR libgnutlsxx-devel-3.6.7-6.29 is installed
  • OR libgnutlsxx28-3.6.7-6.29 is installed
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15-LTSS is installed
  • AND
  • gnutls-3.6.7-6.29 is installed
  • OR libgnutls-devel-3.6.7-6.29 is installed
  • OR libgnutls30-3.6.7-6.29 is installed
  • OR libgnutls30-32bit-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
  • OR libgnutlsxx-devel-3.6.7-6.29 is installed
  • OR libgnutlsxx28-3.6.7-6.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_43-52_6-default-2-6 is installed
  • OR kgraft-patch-3_12_43-52_6-xen-2-6 is installed
  • OR kgraft-patch-SLE12_Update_5-2-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_92-6_18-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_4-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND Package Information
  • ruby2.1-rubygem-rack-1_4-1.4.5-8.10 is installed
  • OR rubygem-rack-1_4-1.4.5-8.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.36-38.1 is installed
  • OR kernel-ec2-devel-3.12.36-38.1 is installed
  • OR kernel-ec2-extra-3.12.36-38.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Toolchain 12 is installed
  • AND Package Information
  • cpp5-5.3.1+r233831-9 is installed
  • OR gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-c++-5.3.1+r233831-9 is installed
  • OR gcc5-fortran-5.3.1+r233831-9 is installed
  • OR gcc5-info-5.3.1+r233831-9 is installed
  • OR gcc5-locale-5.3.1+r233831-9 is installed
  • OR libffi-devel-gcc5-5.3.1+r233831-9 is installed
  • OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-7.1 is installed
  • OR php5-5.5.14-7.1 is installed
  • OR php5-bcmath-5.5.14-7.1 is installed
  • OR php5-bz2-5.5.14-7.1 is installed
  • OR php5-calendar-5.5.14-7.1 is installed
  • OR php5-ctype-5.5.14-7.1 is installed
  • OR php5-curl-5.5.14-7.1 is installed
  • OR php5-dba-5.5.14-7.1 is installed
  • OR php5-dom-5.5.14-7.1 is installed
  • OR php5-enchant-5.5.14-7.1 is installed
  • OR php5-exif-5.5.14-7.1 is installed
  • OR php5-fastcgi-5.5.14-7.1 is installed
  • OR php5-fileinfo-5.5.14-7.1 is installed
  • OR php5-fpm-5.5.14-7.1 is installed
  • OR php5-ftp-5.5.14-7.1 is installed
  • OR php5-gd-5.5.14-7.1 is installed
  • OR php5-gettext-5.5.14-7.1 is installed
  • OR php5-gmp-5.5.14-7.1 is installed
  • OR php5-iconv-5.5.14-7.1 is installed
  • OR php5-intl-5.5.14-7.1 is installed
  • OR php5-json-5.5.14-7.1 is installed
  • OR php5-ldap-5.5.14-7.1 is installed
  • OR php5-mbstring-5.5.14-7.1 is installed
  • OR php5-mcrypt-5.5.14-7.1 is installed
  • OR php5-mysql-5.5.14-7.1 is installed
  • OR php5-odbc-5.5.14-7.1 is installed
  • OR php5-openssl-5.5.14-7.1 is installed
  • OR php5-pcntl-5.5.14-7.1 is installed
  • OR php5-pdo-5.5.14-7.1 is installed
  • OR php5-pear-5.5.14-7.1 is installed
  • OR php5-pgsql-5.5.14-7.1 is installed
  • OR php5-pspell-5.5.14-7.1 is installed
  • OR php5-shmop-5.5.14-7.1 is installed
  • OR php5-snmp-5.5.14-7.1 is installed
  • OR php5-soap-5.5.14-7.1 is installed
  • OR php5-sockets-5.5.14-7.1 is installed
  • OR php5-sqlite-5.5.14-7.1 is installed
  • OR php5-suhosin-5.5.14-7.1 is installed
  • OR php5-sysvmsg-5.5.14-7.1 is installed
  • OR php5-sysvsem-5.5.14-7.1 is installed
  • OR php5-sysvshm-5.5.14-7.1 is installed
  • OR php5-tokenizer-5.5.14-7.1 is installed
  • OR php5-wddx-5.5.14-7.1 is installed
  • OR php5-xmlreader-5.5.14-7.1 is installed
  • OR php5-xmlrpc-5.5.14-7.1 is installed
  • OR php5-xmlwriter-5.5.14-7.1 is installed
  • OR php5-xsl-5.5.14-7.1 is installed
  • OR php5-zip-5.5.14-7.1 is installed
  • OR php5-zlib-5.5.14-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP3 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.4.162-3.26 is installed
  • OR dlm-kmp-rt-4.4.162-3.26 is installed
  • OR gfs2-kmp-rt-4.4.162-3.26 is installed
  • OR kernel-devel-rt-4.4.162-3.26 is installed
  • OR kernel-rt-4.4.162-3.26 is installed
  • OR kernel-rt-base-4.4.162-3.26 is installed
  • OR kernel-rt-devel-4.4.162-3.26 is installed
  • OR kernel-rt_debug-4.4.162-3.26 is installed
  • OR kernel-rt_debug-devel-4.4.162-3.26 is installed
  • OR kernel-source-rt-4.4.162-3.26 is installed
  • OR kernel-syms-rt-4.4.162-3.26 is installed
  • OR ocfs2-kmp-rt-4.4.162-3.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • OpenEXR-1.6.1-83.17.1 is installed
  • OR OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-x86-1.6.1-83.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND zoo-2.10-911.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND coolkey-1.1.0-22.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • bind-9.9.5P1-1 is installed
  • OR bind-chrootenv-9.9.5P1-1 is installed
  • OR bind-doc-9.9.5P1-1 is installed
  • OR bind-libs-9.9.5P1-1 is installed
  • OR bind-libs-32bit-9.9.5P1-1 is installed
  • OR bind-utils-9.9.5P1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gdk-pixbuf-2.30.6-7.2 is installed
  • OR gdk-pixbuf-lang-2.30.6-7.2 is installed
  • OR gdk-pixbuf-query-loaders-2.30.6-7.2 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 is installed
  • OR libgdk_pixbuf-2_0-0-2.30.6-7.2 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND ppp-2.4.7-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-6 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND MozillaFirefox-devel-91.4.0-112.83.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_31-default-5-2.2 is installed
  • OR kgraft-patch-3_12_51-52_31-xen-5-2.2 is installed
  • OR kgraft-patch-SLE12_Update_9-5-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • pam-1.1.8-23 is installed
  • OR pam-doc-1.1.8-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • libmysqlclient-devel-10.0.30-25.1 is installed
  • OR libmysqlclient_r18-10.0.30-25.1 is installed
  • OR libmysqld-devel-10.0.30-25.1 is installed
  • OR libmysqld18-10.0.30-25.1 is installed
  • OR mariadb-10.0.30-25.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND krb5-devel-1.12.5-39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND aaa_base-malloccheck-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • ant-1.9.4-3.3 is installed
  • OR ant-jmf-1.9.4-3.3 is installed
  • OR ant-scripts-1.9.4-3.3 is installed
  • OR ant-swing-1.9.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • libmysqlclient_r18-10.0.16-15.1 is installed
  • OR libmysqlclient_r18-32bit-10.0.16-15.1 is installed
  • OR mariadb-10.0.16-15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • libmysqlclient_r18-10.0.26-9.2 is installed
  • OR libmysqlclient_r18-32bit-10.0.26-9.2 is installed
  • OR mariadb-10.0.26-9.2 is installed
    • BACK