Oval Definition:	oval:org.opensuse.security:def:52318
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 (bsc#1160498) * CVE-2019-17026 (bmo#1607443) IonMonkey type confusion with StoreElementHole and FallibleStoreElement - Firefox Extended Support Release 68.4.0 ESR * Fixed: Various security fixes MFSA 2020-02 (bsc#1160305) * CVE-2019-17015 (bmo#1599005) Memory corruption in parent process during new content process initialization on Windows * CVE-2019-17016 (bmo#1599181) Bypass of @namespace CSS sanitization during pasting * CVE-2019-17017 (bmo#1603055) Type Confusion in XPCVariant.cpp * CVE-2019-17021 (bmo#1599008) Heap address disclosure in parent process during content process initialization on Windows * CVE-2019-17022 (bmo#1602843) CSS sanitization does not escape HTML tags * CVE-2019-17024 (bmo#1507180, bmo#1595470, bmo#1598605, bmo#1601826) Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4 Family: unix Class: patch Status: Reference(s): 1047962 1049826 1051510 1053177 1058115 1065022 1065729 1076907 1082555 1083647 1085780 1089895 1091376 1098998 1099019 1100079 1100081 1100082 1100780 1102261 1103990 1103991 1103992 1104745 1109837 1110542 1111319 1111666 1112178 1112374 1112911 1113296 1113956 1114279 1114908 1115341 1116840 1118758 1119373 1119820 1119873 1120263 1120463 1120629 1120630 1120631 1121611 1122062 1122471 1123137 1123681 1123843 1123865 1123967 1124278 1124897 1125415 1127026 1127155 1127220 1127354 1127355 1127371 1130161 1131823 1133021 1135749 1137977 1142685 1144333 1151794 1152489 1154824 1157169 1158265 1160305 1160388 1160498 1160947 1164780 1164871 1165183 1165478 1165741 1166969 1166978 1167574 1167851 1167867 1168332 1168670 1168789 1169020 1169514 1169525 1169762 1169978 1170056 1170125 1170145 1170284 1170345 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171817 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1173258 1174628 663358 764147 965786 978193 993025 CVE-2007-3999 CVE-2009-1720 CVE-2009-1721 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2011-3172 CVE-2013-0211 CVE-2013-2001 CVE-2014-0172 CVE-2014-3564 CVE-2015-2304 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2015-8079 CVE-2015-8915 CVE-2015-8916 CVE-2015-8918 CVE-2015-8919 CVE-2015-8920 CVE-2015-8921 CVE-2015-8922 CVE-2015-8923 CVE-2015-8924 CVE-2015-8925 CVE-2015-8926 CVE-2015-8928 CVE-2015-8929 CVE-2015-8930 CVE-2015-8931 CVE-2015-8932 CVE-2015-8933 CVE-2015-8934 CVE-2016-1541 CVE-2016-4300 CVE-2016-4301 CVE-2016-4302 CVE-2016-4809 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2018-1000199 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12372 CVE-2018-12373 CVE-2018-12374 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-5188 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-9455 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-14344 CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 SUSE-SU-2018:2174-1 SUSE-SU-2019:2030-1 SUSE-SU-2020:0078-1 SUSE-SU-2020:2197-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information eog-3.26.2-lp150.3 is installed OR eog-lang-3.26.2-lp150.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information gpg2-2.0.9-25.33.37 is installed OR gpg2-lang-2.0.9-25.33.37 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-38.5.0esr-28 is installed OR MozillaFirefox-translations-38.5.0esr-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libmysql55client18-5.5.46-0.14 is installed OR libmysql55client18-32bit-5.5.46-0.14 is installed OR libmysql55client_r18-5.5.46-0.14 is installed OR libmysql55client_r18-32bit-5.5.46-0.14 is installed OR mysql-5.5.46-0.14 is installed OR mysql-client-5.5.46-0.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information elfutils-0.158-3 is installed OR libasm1-0.158-3 is installed OR libdw1-0.158-3 is installed OR libdw1-32bit-0.158-3 is installed OR libebl1-0.158-3 is installed OR libebl1-32bit-0.158-3 is installed OR libelf1-0.158-3 is installed OR libelf1-32bit-0.158-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information pam-modules-12.1-23 is installed OR pam-modules-32bit-12.1-23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR libIlmImf-Imf_2_1-21-32bit-2.1.0-4 is installed OR openexr-2.1.0-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libQt5WebKit5-5.6.2-1 is installed OR libQt5WebKit5-imports-5.6.2-1 is installed OR libQt5WebKitWidgets5-5.6.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information MozillaFirefox-68.4.1-3.66 is installed OR MozillaFirefox-branding-upstream-68.4.1-3.66 is installed OR MozillaFirefox-buildsymbols-68.4.1-3.66 is installed OR MozillaFirefox-devel-68.4.1-3.66 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information google-compute-engine-20190801-4.38 is installed OR google-compute-engine-oslogin-32bit-20190801-4.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND p7zip-9.20.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_64_8-default-12-4 is installed OR kgraft-patch-3_12_62-60_64_8-xen-12-4 is installed OR kgraft-patch-SLE12-SP1_Update_8-12-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libxcb-dri2-0-1.10-3 is installed OR libxcb-dri2-0-32bit-1.10-3 is installed OR libxcb-dri3-0-1.10-3 is installed OR libxcb-dri3-0-32bit-1.10-3 is installed OR libxcb-glx0-1.10-3 is installed OR libxcb-glx0-32bit-1.10-3 is installed OR libxcb-present0-1.10-3 is installed OR libxcb-present0-32bit-1.10-3 is installed OR libxcb-randr0-1.10-3 is installed OR libxcb-render0-1.10-3 is installed OR libxcb-render0-32bit-1.10-3 is installed OR libxcb-shape0-1.10-3 is installed OR libxcb-shm0-1.10-3 is installed OR libxcb-shm0-32bit-1.10-3 is installed OR libxcb-sync1-1.10-3 is installed OR libxcb-sync1-32bit-1.10-3 is installed OR libxcb-xf86dri0-1.10-3 is installed OR libxcb-xfixes0-1.10-3 is installed OR libxcb-xfixes0-32bit-1.10-3 is installed OR libxcb-xinerama0-1.10-3 is installed OR libxcb-xkb1-1.10-3 is installed OR libxcb-xkb1-32bit-1.10-3 is installed OR libxcb-xv0-1.10-3 is installed OR libxcb1-1.10-3 is installed OR libxcb1-32bit-1.10-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libX11-1.6.5-3.9 is installed OR libX11-6-1.6.5-3.9 is installed OR libX11-6-32bit-1.6.5-3.9 is installed OR libX11-data-1.6.5-3.9 is installed OR libX11-devel-1.6.5-3.9 is installed OR libX11-xcb1-1.6.5-3.9 is installed OR libX11-xcb1-32bit-1.6.5-3.9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.45 is installed OR kernel-default-extra-4.12.14-197.45 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-magnum-3.1.2~a0~dev20-9 is installed OR openstack-magnum-api-3.1.2~a0~dev20-9 is installed OR openstack-magnum-conductor-3.1.2~a0~dev20-9 is installed OR openstack-magnum-doc-3.1.2~a0~dev20-9 is installed OR python-magnum-3.1.2~a0~dev20-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Twisted-15.2.1-9.8 is installed
BACK