Oval Definition:oval:org.opensuse.security:def:52198
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Moderate)
Description:

This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 78.2.0 ESR * Fixed: Various stability, functionality, and security fixes - Mozilla Firefox ESR 78.2 MFSA 2020-38 (bsc#1175686) * CVE-2020-15663 (bmo#1643199) Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege * CVE-2020-15664 (bmo#1658214) Attacker-induced prompt for extension installation * CVE-2020-15670 (bmo#1651001, bmo#1651449, bmo#1653626, bmo#1656957) Memory safety bugs fixed in Firefox 80 and Firefox ESR 78.2

- Fixed Firefox tab crash in FIPS mode (bsc#1174284).

- Fix broken translation-loading (bsc#1173991) * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more
Family:unixClass:patch
Status:Reference(s):1089811
1116451
1121874
1123131
1123455
1124062
1124869
1127760
1127857
1128845
1135189
1135228
1163985
1171550
1173991
1174284
1174415
1175686
1176590
1177943
CVE-2006-0855
CVE-2007-1669
CVE-2009-0163
CVE-2009-2820
CVE-2009-3553
CVE-2010-0393
CVE-2010-0405
CVE-2010-0540
CVE-2010-0542
CVE-2010-1205
CVE-2010-1748
CVE-2010-2941
CVE-2011-2199
CVE-2011-2501
CVE-2011-3026
CVE-2011-3045
CVE-2011-3048
CVE-2012-3386
CVE-2012-5519
CVE-2012-6094
CVE-2013-2142
CVE-2013-6435
CVE-2013-7353
CVE-2013-7354
CVE-2014-2856
CVE-2014-3537
CVE-2014-5029
CVE-2014-5030
CVE-2014-5031
CVE-2014-8118
CVE-2015-2590
CVE-2015-2597
CVE-2015-2601
CVE-2015-2613
CVE-2015-2619
CVE-2015-2621
CVE-2015-2625
CVE-2015-2627
CVE-2015-2628
CVE-2015-2632
CVE-2015-2637
CVE-2015-2638
CVE-2015-2659
CVE-2015-2664
CVE-2015-2808
CVE-2015-4000
CVE-2015-4729
CVE-2015-4731
CVE-2015-4732
CVE-2015-4733
CVE-2015-4734
CVE-2015-4736
CVE-2015-4748
CVE-2015-4749
CVE-2015-4760
CVE-2015-4803
CVE-2015-4805
CVE-2015-4806
CVE-2015-4810
CVE-2015-4835
CVE-2015-4840
CVE-2015-4842
CVE-2015-4843
CVE-2015-4844
CVE-2015-4860
CVE-2015-4868
CVE-2015-4872
CVE-2015-4881
CVE-2015-4882
CVE-2015-4883
CVE-2015-4893
CVE-2015-4901
CVE-2015-4902
CVE-2015-4903
CVE-2015-4906
CVE-2015-4908
CVE-2015-4911
CVE-2015-4916
CVE-2015-7981
CVE-2015-8126
CVE-2015-8540
CVE-2016-10087
CVE-2016-5104
CVE-2017-16818
CVE-2018-10861
CVE-2018-1128
CVE-2018-1129
CVE-2018-16858
CVE-2018-7262
CVE-2020-13249
CVE-2020-14374
CVE-2020-14375
CVE-2020-14376
CVE-2020-14377
CVE-2020-14378
CVE-2020-14779
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
CVE-2020-14798
CVE-2020-14803
CVE-2020-15663
CVE-2020-15664
CVE-2020-15670
CVE-2020-15900
CVE-2020-1720
SUSE-SU-2019:1894-1
SUSE-SU-2020:0589-1
SUSE-SU-2020:1423-1
SUSE-SU-2020:2095-1
SUSE-SU-2020:2767-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • avahi-0.6.32-lp150.3 is installed
  • OR avahi-lang-0.6.32-lp150.3 is installed
  • OR libavahi-client3-0.6.32-lp150.3 is installed
  • OR libavahi-common3-0.6.32-lp150.3 is installed
  • OR libavahi-core7-0.6.32-lp150.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • finch-2.6.6-0.19 is installed
  • OR libpurple-2.6.6-0.19 is installed
  • OR libpurple-lang-2.6.6-0.19 is installed
  • OR libpurple-meanwhile-2.6.6-0.19 is installed
  • OR libpurple-tcl-2.6.6-0.19 is installed
  • OR pidgin-2.6.6-0.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libtiff3-3.8.2-141.160 is installed
  • OR libtiff3-32bit-3.8.2-141.160 is installed
  • OR tiff-3.8.2-141.160 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cups-1.7.5-2 is installed
  • OR cups-client-1.7.5-2 is installed
  • OR cups-libs-1.7.5-2 is installed
  • OR cups-libs-32bit-1.7.5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.65-1 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.65-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • imobiledevice-tools-1.2.0-7 is installed
  • OR libimobiledevice6-1.2.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libpng12-0-1.2.50-19 is installed
  • OR libpng12-0-32bit-1.2.50-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox-78.2.0-3.105 is installed
  • OR MozillaFirefox-branding-upstream-78.2.0-3.105 is installed
  • OR MozillaFirefox-buildsymbols-78.2.0-3.105 is installed
  • OR MozillaFirefox-devel-78.2.0-3.105 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr3.10-14 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr3.10-14 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr3.10-14 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr3.10-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-11-4 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-11-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-11-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.101-14 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.101-14 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.101-14 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.101-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.9 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.9 is installed
  • OR sqlite3-3.8.10.2-9.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.22.5-2.32 is installed
  • OR libwebkit2gtk-4_0-37-2.22.5-2.32 is installed
  • OR libwebkit2gtk3-lang-2.22.5-2.32 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.22.5-2.32 is installed
  • OR typelib-1_0-WebKit2-4_0-2.22.5-2.32 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.22.5-2.32 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.22.5-2.32 is installed
  • OR webkit2gtk3-2.22.5-2.32 is installed
  • OR webkit2gtk3-devel-2.22.5-2.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_53-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gpgme-1.5.1-1 is installed
  • OR libgpgme11-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND shadow-4.2.1-27.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • fetchmail-6.3.26-12 is installed
  • OR fetchmailconf-6.3.26-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • dpdk-18.11.9-3.25 is installed
  • OR dpdk-devel-18.11.9-3.25 is installed
  • OR dpdk-kmp-default-18.11.9_k4.12.14_150.58-3.25 is installed
  • OR dpdk-thunderx-18.11.9-3.25 is installed
  • OR dpdk-thunderx-devel-18.11.9-3.25 is installed
  • OR dpdk-thunderx-kmp-default-18.11.9_k4.12.14_150.58-3.25 is installed
  • OR dpdk-tools-18.11.9-3.25 is installed
  • OR libdpdk-18_11-18.11.9-3.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libmariadb-devel-3.1.8-3.18 is installed
  • OR libmariadb3-3.1.8-3.18 is installed
  • OR libmariadb_plugins-3.1.8-3.18 is installed
  • OR libmariadbprivate-3.1.8-3.18 is installed
  • OR mariadb-connector-c-3.1.8-3.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • libixion-0.14.1-4.3 is installed
  • OR libixion-0_14-0-0.14.1-4.3 is installed
  • OR liborcus-0.14.1-3.3 is installed
  • OR liborcus-0_14-0-0.14.1-3.3 is installed
  • OR liborcus-devel-0.14.1-3.3 is installed
  • OR myspell-af_ZA-20190423-3.9 is installed
  • OR myspell-ar-20190423-3.9 is installed
  • OR myspell-bg_BG-20190423-3.9 is installed
  • OR myspell-bn_BD-20190423-3.9 is installed
  • OR myspell-br_FR-20190423-3.9 is installed
  • OR myspell-ca-20190423-3.9 is installed
  • OR myspell-cs_CZ-20190423-3.9 is installed
  • OR myspell-da_DK-20190423-3.9 is installed
  • OR myspell-dictionaries-20190423-3.9 is installed
  • OR myspell-el_GR-20190423-3.9 is installed
  • OR myspell-et_EE-20190423-3.9 is installed
  • OR myspell-fr_FR-20190423-3.9 is installed
  • OR myspell-gl-20190423-3.9 is installed
  • OR myspell-gu_IN-20190423-3.9 is installed
  • OR myspell-he_IL-20190423-3.9 is installed
  • OR myspell-hi_IN-20190423-3.9 is installed
  • OR myspell-hr_HR-20190423-3.9 is installed
  • OR myspell-it_IT-20190423-3.9 is installed
  • OR myspell-lt_LT-20190423-3.9 is installed
  • OR myspell-lv_LV-20190423-3.9 is installed
  • OR myspell-nl_NL-20190423-3.9 is installed
  • OR myspell-nn_NO-20190423-3.9 is installed
  • OR myspell-pl_PL-20190423-3.9 is installed
  • OR myspell-pt_PT-20190423-3.9 is installed
  • OR myspell-si_LK-20190423-3.9 is installed
  • OR myspell-sk_SK-20190423-3.9 is installed
  • OR myspell-sl_SI-20190423-3.9 is installed
  • OR myspell-sr-20190423-3.9 is installed
  • OR myspell-sv_SE-20190423-3.9 is installed
  • OR myspell-te_IN-20190423-3.9 is installed
  • OR myspell-th_TH-20190423-3.9 is installed
  • OR myspell-tr_TR-20190423-3.9 is installed
  • OR myspell-uk_UA-20190423-3.9 is installed
  • OR myspell-zu_ZA-20190423-3.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.69 is installed
  • OR kernel-default-base-3.12.74-60.64.69 is installed
  • OR kernel-default-devel-3.12.74-60.64.69 is installed
  • OR kernel-devel-3.12.74-60.64.69 is installed
  • OR kernel-macros-3.12.74-60.64.69 is installed
  • OR kernel-source-3.12.74-60.64.69 is installed
  • OR kernel-syms-3.12.74-60.64.69 is installed
  • OR kernel-xen-3.12.74-60.64.69 is installed
  • OR kernel-xen-base-3.12.74-60.64.69 is installed
  • OR kernel-xen-devel-3.12.74-60.64.69 is installed
  • OR kgraft-patch-3_12_74-60_64_69-default-1-2.3 is installed
  • OR kgraft-patch-3_12_74-60_64_69-xen-1-2.3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_24-1-2.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-firmware-20170530-21.22 is installed
  • OR ucode-amd-20170530-21.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND slf4j-1.7.12-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • BACK