Oval Definition:	oval:org.opensuse.security:def:51826
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox to version ESR 60.6.1 fixes the following issues: Security issuess addressed: - update to Firefox ESR 60.6.1 (bsc#1130262): - CVE-2019-9813: Fixed Ionmonkey type confusion with __proto__ mutations - CVE-2019-9810: Fixed IonMonkey MArraySlice incorrect alias information - Update to Firefox ESR 60.6 (bsc#1129821): - CVE-2018-18506: Fixed an issue with Proxy Auto-Configuration file - CVE-2019-9801: Fixed an issue which could allow Windows programs to be exposed to web content - CVE-2019-9788: Fixed multiple memory safety bugs - CVE-2019-9790: Fixed a Use-after-free vulnerability when removing in-use DOM elements - CVE-2019-9791: Fixed an incorrect Type inference for constructors entered through on-stack replacement with IonMonkey - CVE-2019-9792: Fixed an issue where IonMonkey leaks JS_OPTIMIZED_OUT magic value to script - CVE-2019-9793: Fixed multiple improper bounds checks when Spectre mitigations are disabled - CVE-2019-9794: Fixed an issue where command line arguments not discarded during execution - CVE-2019-9795: Fixed a Type-confusion vulnerability in IonMonkey JIT compiler - CVE-2019-9796: Fixed a Use-after-free vulnerability in SMIL animation controller - Update to Firefox ESR 60.5.1 (bsc#1125330): - CVE-2018-18356: Fixed a use-after-free vulnerability in the Skia library which can occur when creating a path, leading to a potentially exploitable crash. - CVE-2019-5785: Fixed an integer overflow vulnerability in the Skia library which can occur after specific transform operations, leading to a potentially exploitable crash. - CVE-2018-18335: Fixed a buffer overflow vulnerability in the Skia library which can occur with Canvas 2D acceleration on macOS. This issue was addressed by disabling Canvas 2D acceleration in Firefox ESR. Note: this does not affect other versions and platforms where Canvas 2D acceleration is already disabled by default. Other issue addressed: - Fixed an issue with MozillaFirefox-translations-common which was causing error on update (bsc#1127987). Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-12/ Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-08/ Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/ Family: unix Class: patch Status: Reference(s): 1013708 1013712 1013893 1015171 1050549 1051510 1061840 1065600 1065729 1071995 1088810 1089524 1092206 1105392 1111666 1112178 1112504 1114279 1118338 1122623 1125330 1127987 1129821 1130262 1133021 1133147 1134078 1136572 1140025 1142685 1144162 1157424 1157480 1157966 1158013 1159271 1159530 1160218 1160979 1161360 1161702 1161907 1162557 1162617 1162618 1162619 1162623 1162928 1162943 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1165715 1168630 1168874 1172686 1173937 1176262 CVE-2009-1210 CVE-2009-1267 CVE-2009-1268 CVE-2009-1269 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2009-3241 CVE-2009-3242 CVE-2009-3243 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-0926 CVE-2010-1455 CVE-2010-1635 CVE-2010-1642 CVE-2010-2063 CVE-2010-2993 CVE-2010-3069 CVE-2010-3445 CVE-2010-4300 CVE-2010-4301 CVE-2010-4538 CVE-2011-0024 CVE-2011-0538 CVE-2011-0713 CVE-2011-0719 CVE-2011-1138 CVE-2011-1139 CVE-2011-1140 CVE-2011-1143 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592 CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175 CVE-2011-2522 CVE-2011-2597 CVE-2011-2694 CVE-2011-2698 CVE-2011-3266 CVE-2011-3360 CVE-2011-3483 CVE-2012-0817 CVE-2012-0870 CVE-2012-1182 CVE-2012-2111 CVE-2012-2392 CVE-2012-2393 CVE-2012-2394 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2012-3548 CVE-2012-4048 CVE-2012-4049 CVE-2012-4285 CVE-2012-4286 CVE-2012-4287 CVE-2012-4288 CVE-2012-4289 CVE-2012-4290 CVE-2012-4291 CVE-2012-4292 CVE-2012-4293 CVE-2012-4294 CVE-2012-4295 CVE-2012-4296 CVE-2012-4297 CVE-2012-4298 CVE-2012-4504 CVE-2012-5237 CVE-2012-5238 CVE-2012-5239 CVE-2012-5240 CVE-2012-5592 CVE-2012-5593 CVE-2012-5594 CVE-2012-5595 CVE-2012-5596 CVE-2012-5597 CVE-2012-5598 CVE-2012-5599 CVE-2012-5600 CVE-2012-5601 CVE-2012-5602 CVE-2012-6150 CVE-2013-0172 CVE-2013-0213 CVE-2013-0214 CVE-2013-0454 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576 CVE-2013-1577 CVE-2013-1578 CVE-2013-1579 CVE-2013-1580 CVE-2013-1581 CVE-2013-1582 CVE-2013-1583 CVE-2013-1584 CVE-2013-1585 CVE-2013-1586 CVE-2013-1587 CVE-2013-1588 CVE-2013-1589 CVE-2013-1590 CVE-2013-1863 CVE-2013-2475 CVE-2013-2476 CVE-2013-2477 CVE-2013-2478 CVE-2013-2479 CVE-2013-2480 CVE-2013-2481 CVE-2013-2482 CVE-2013-2483 CVE-2013-2484 CVE-2013-2485 CVE-2013-2486 CVE-2013-2487 CVE-2013-2488 CVE-2013-3555 CVE-2013-3556 CVE-2013-3557 CVE-2013-3558 CVE-2013-3559 CVE-2013-3560 CVE-2013-3561 CVE-2013-3562 CVE-2013-4083 CVE-2013-4124 CVE-2013-4408 CVE-2013-4475 CVE-2013-4476 CVE-2013-4496 CVE-2013-4920 CVE-2013-4921 CVE-2013-4922 CVE-2013-4923 CVE-2013-4924 CVE-2013-4925 CVE-2013-4926 CVE-2013-4927 CVE-2013-4928 CVE-2013-4929 CVE-2013-4930 CVE-2013-4931 CVE-2013-4932 CVE-2013-4933 CVE-2013-4934 CVE-2013-4935 CVE-2013-4936 CVE-2013-5717 CVE-2013-5718 CVE-2013-5719 CVE-2013-5720 CVE-2013-5721 CVE-2013-5722 CVE-2013-6336 CVE-2013-6337 CVE-2013-6338 CVE-2013-6339 CVE-2013-6340 CVE-2013-6442 CVE-2013-7112 CVE-2013-7113 CVE-2013-7114 CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-2281 CVE-2014-2282 CVE-2014-2283 CVE-2014-2299 CVE-2014-2907 CVE-2014-3493 CVE-2014-3560 CVE-2014-3634 CVE-2014-3675 CVE-2014-3676 CVE-2014-3677 CVE-2014-3686 CVE-2014-4020 CVE-2014-5161 CVE-2014-5162 CVE-2014-5163 CVE-2014-5164 CVE-2014-5165 CVE-2014-8143 CVE-2015-0210 CVE-2015-0240 CVE-2015-0559 CVE-2015-0560 CVE-2015-0561 CVE-2015-0562 CVE-2015-0563 CVE-2015-0564 CVE-2015-1863 CVE-2015-2188 CVE-2015-2189 CVE-2015-2191 CVE-2015-3223 CVE-2015-3811 CVE-2015-3812 CVE-2015-3813 CVE-2015-3814 CVE-2015-4141 CVE-2015-4142 CVE-2015-4143 CVE-2015-5130 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5310 CVE-2015-5330 CVE-2015-5370 CVE-2015-7560 CVE-2015-7830 CVE-2015-8041 CVE-2015-8467 CVE-2015-8711 CVE-2015-8712 CVE-2015-8713 CVE-2015-8714 CVE-2015-8715 CVE-2015-8716 CVE-2015-8717 CVE-2015-8718 CVE-2015-8719 CVE-2015-8720 CVE-2015-8721 CVE-2015-8722 CVE-2015-8723 CVE-2015-8724 CVE-2015-8725 CVE-2015-8726 CVE-2015-8727 CVE-2015-8728 CVE-2015-8729 CVE-2015-8730 CVE-2015-8731 CVE-2015-8732 CVE-2015-8733 CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2113 CVE-2016-2115 CVE-2016-2118 CVE-2016-2119 CVE-2016-2523 CVE-2016-2530 CVE-2016-2531 CVE-2016-2532 CVE-2016-5350 CVE-2016-5351 CVE-2016-5352 CVE-2016-5353 CVE-2016-5354 CVE-2016-5355 CVE-2016-5356 CVE-2016-5357 CVE-2016-5358 CVE-2016-5359 CVE-2016-6504 CVE-2016-6505 CVE-2016-6506 CVE-2016-6507 CVE-2016-6508 CVE-2016-6509 CVE-2016-6510 CVE-2016-6511 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2019-10214 CVE-2019-20916 CVE-2019-3816 CVE-2019-3833 CVE-2019-5785 CVE-2019-6470 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-15095 CVE-2020-2732 CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2019:0654-1 SUSE-SU-2019:0871-1 SUSE-SU-2019:1353-2 SUSE-SU-2019:2657-1 SUSE-SU-2020:0688-1 SUSE-SU-2020:0712-1 SUSE-SU-2020:1027-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:2870-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gimp-2.8.22-lp150.3 is installed OR gimp-lang-2.8.22-lp150.3 is installed OR gimp-plugins-python-2.8.22-lp150.3 is installed OR libgimp-2_0-0-2.8.22-lp150.3 is installed OR libgimpui-2_0-0-2.8.22-lp150.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information gpg2-2.0.9-25.33.39 is installed OR gpg2-lang-2.0.9-25.33.39 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libproxy1-0.4.11-11 is installed OR libproxy1-32bit-0.4.11-11 is installed OR libproxy1-config-gnome3-0.4.11-11 is installed OR libproxy1-config-gnome3-32bit-0.4.11-11 is installed OR libproxy1-networkmanager-0.4.11-11 is installed OR libproxy1-networkmanager-32bit-0.4.11-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND libdcerpc-atsvc0-4.2.4-26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libcares2-1.9.1-5 is installed OR libcares2-32bit-1.9.1-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information hplip-3.16.11-1 is installed OR hplip-hpijs-3.16.11-1 is installed OR hplip-sane-3.16.11-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information MozillaFirefox-60.6.1-3.29 is installed OR MozillaFirefox-branding-upstream-60.6.1-3.29 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-auto-enable-devices-5.48-5.16 is installed OR bluez-devel-32bit-5.48-5.16 is installed OR bluez-test-5.48-5.16 is installed OR libbluetooth3-32bit-5.48-5.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.20 is installed OR dlm-kmp-rt-4.12.14-14.20 is installed OR gfs2-kmp-rt-4.12.14-14.20 is installed OR kernel-devel-rt-4.12.14-14.20 is installed OR kernel-rt-4.12.14-14.20 is installed OR kernel-rt-base-4.12.14-14.20 is installed OR kernel-rt-devel-4.12.14-14.20 is installed OR kernel-rt_debug-4.12.14-14.20 is installed OR kernel-rt_debug-devel-4.12.14-14.20 is installed OR kernel-source-rt-4.12.14-14.20 is installed OR kernel-syms-rt-4.12.14-14.20 is installed OR ocfs2-kmp-rt-4.12.14-14.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libwsman-devel-2.6.7-3.3 is installed OR libwsman3-2.6.7-3.3 is installed OR openwsman-2.6.7-3.3 is installed OR openwsman-server-2.6.7-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dhcp-4.3.5-6.3 is installed OR dhcp-relay-4.3.5-6.3 is installed OR dhcp-server-4.3.5-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.38 is installed OR nodejs8-devel-8.17.0-3.38 is installed OR nodejs8-docs-8.17.0-3.38 is installed OR npm8-8.17.0-3.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND cifs-utils-6.4-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information qemu-2.3.1-33.6 is installed OR qemu-block-curl-2.3.1-33.6 is installed OR qemu-block-rbd-2.3.1-33.6 is installed OR qemu-guest-agent-2.3.1-33.6 is installed OR qemu-ipxe-1.0.0-33.6 is installed OR qemu-kvm-2.3.1-33.6 is installed OR qemu-lang-2.3.1-33.6 is installed OR qemu-ppc-2.3.1-33.6 is installed OR qemu-s390-2.3.1-33.6 is installed OR qemu-seabios-1.8.1-33.6 is installed OR qemu-sgabios-8-33.6 is installed OR qemu-tools-2.3.1-33.6 is installed OR qemu-vgabios-1.8.1-33.6 is installed OR qemu-x86-2.3.1-33.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND perl-XML-LibXML-2.0019-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information e2fsprogs-1.42.11-15 is installed OR libcom_err2-1.42.11-15 is installed OR libcom_err2-32bit-1.42.11-15 is installed OR libext2fs2-1.42.11-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information tomcat-8.0.53-29.16 is installed OR tomcat-admin-webapps-8.0.53-29.16 is installed OR tomcat-docs-webapp-8.0.53-29.16 is installed OR tomcat-el-3_0-api-8.0.53-29.16 is installed OR tomcat-javadoc-8.0.53-29.16 is installed OR tomcat-jsp-2_3-api-8.0.53-29.16 is installed OR tomcat-lib-8.0.53-29.16 is installed OR tomcat-servlet-3_1-api-8.0.53-29.16 is installed OR tomcat-webapps-8.0.53-29.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information python-pip-10.0.1-3.3 is installed OR python2-pip-10.0.1-3.3 is installed OR python3-pip-10.0.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.7.0-3.77 is installed OR MozillaThunderbird-translations-common-68.7.0-3.77 is installed OR MozillaThunderbird-translations-other-68.7.0-3.77 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information storm-1.0.5-5 is installed OR storm-nimbus-1.0.5-5 is installed OR storm-supervisor-1.0.5-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
BACK