OVAL Reference oval:org.opensuse.security:def:52432

Oval Definition:

oval:org.opensuse.security:def:52432

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Moderate)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.2.0 ESR * Fixed: Various stability, functionality, and security fixes - Mozilla Firefox ESR 78.2 MFSA 2020-38 (bsc#1175686) * CVE-2020-15663 (bmo#1643199) Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege * CVE-2020-15664 (bmo#1658214) Attacker-induced prompt for extension installation * CVE-2020-15670 (bmo#1651001, bmo#1651449, bmo#1653626, bmo#1656957) Memory safety bugs fixed in Firefox 80 and Firefox ESR 78.2 - Fixed Firefox tab crash in FIPS mode (bsc#1174284). - Fix broken translation-loading (bsc#1173991) * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1061840 1065600 1071995 1088047 1094555 1098633 1106383 1106751 1109137 1114279 1119532 1120423 1124167 1127155 1128432 1128902 1128910 1131645 1132154 1132390 1133401 1133738 1134303 1134395 1135296 1135556 1135642 1136157 1136598 1136922 1136935 1137103 1137194 1137429 1137625 1137728 1137884 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138291 1138293 1138374 1138375 1138589 1138719 1139751 1139771 1139782 1139865 1140133 1140328 1140405 1140424 1140428 1140575 1140577 1140637 1140658 1140715 1140719 1140726 1140727 1140728 1140814 1169679 1169748 1171441 1171443 1171444 1171445 1171446 1171447 1171474 1173247 1173605 1173674 1173991 1174157 1174200 1174284 1175686 1177943 CVE-2008-1420 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-2624 CVE-2009-3379 CVE-2010-0001 CVE-2010-2891 CVE-2010-4494 CVE-2011-0020 CVE-2011-0064 CVE-2011-1944 CVE-2011-3635 CVE-2012-0444 CVE-2012-4425 CVE-2012-4510 CVE-2012-5134 CVE-2013-0240 CVE-2013-0338 CVE-2013-1799 CVE-2013-1969 CVE-2014-0191 CVE-2014-3660 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2015-1819 CVE-2015-5191 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317 CVE-2015-8710 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4483 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633 CVE-2018-10392 CVE-2018-10393 CVE-2018-16871 CVE-2018-20836 CVE-2018-5146 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11478 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2020-11017 CVE-2020-11018 CVE-2020-11019 CVE-2020-11038 CVE-2020-11039 CVE-2020-11040 CVE-2020-11041 CVE-2020-11043 CVE-2020-11085 CVE-2020-11086 CVE-2020-11087 CVE-2020-11088 CVE-2020-11089 CVE-2020-11095 CVE-2020-11096 CVE-2020-11097 CVE-2020-11098 CVE-2020-11099 CVE-2020-11521 CVE-2020-11522 CVE-2020-11523 CVE-2020-11524 CVE-2020-11525 CVE-2020-11526 CVE-2020-13396 CVE-2020-13397 CVE-2020-13398 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15503 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 SUSE-SU-2019:1855-1 SUSE-SU-2020:2029-1 SUSE-SU-2020:2068-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND chromium-66.0.3359.170-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-src-1.8.0.222-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.5esr-0.4 is installed OR MozillaFirefox-branding-SLED-7-0.6.9 is installed OR MozillaFirefox-translations-17.0.5esr-0.4 is installed OR libfreebl3-3.14.3-0.4.3 is installed OR libfreebl3-32bit-3.14.3-0.4.3 is installed OR mozilla-nspr-4.9.6-0.3 is installed OR mozilla-nspr-32bit-4.9.6-0.3 is installed OR mozilla-nss-3.14.3-0.4.3 is installed OR mozilla-nss-32bit-3.14.3-0.4.3 is installed OR mozilla-nss-tools-3.14.3-0.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.7.0esr-0.8 is installed OR MozillaFirefox-translations-31.7.0esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnome-online-accounts-3.10.5-1 is installed OR gnome-online-accounts-lang-3.10.5-1 is installed OR libgoa-1_0-0-3.10.5-1 is installed OR libgoa-backend-1_0-1-3.10.5-1 is installed OR typelib-1_0-Goa-1_0-3.10.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information empathy-3.12.12-5 is installed OR empathy-lang-3.12.12-5 is installed OR telepathy-mission-control-plugin-goa-3.12.12-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND gzip-1.6-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-78.2.0-3.105 is installed OR MozillaFirefox-branding-upstream-78.2.0-3.105 is installed OR MozillaFirefox-buildsymbols-78.2.0-3.105 is installed OR MozillaFirefox-devel-78.2.0-3.105 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_7_0-openjdk-1.7.0.91-21 is installed OR java-1_7_0-openjdk-demo-1.7.0.91-21 is installed OR java-1_7_0-openjdk-devel-1.7.0.91-21 is installed OR java-1_7_0-openjdk-headless-1.7.0.91-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-9-4 is installed OR kgraft-patch-3_12_67-60_64_24-xen-9-4 is installed OR kgraft-patch-SLE12-SP1_Update_11-9-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-52.5.0esr-109.9 is installed OR MozillaFirefox-translations-52.5.0esr-109.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libspice-server1-0.12.7-10.6 is installed OR spice-0.12.7-10.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libqca2-2.0.3-17.7 is installed OR libqca2-32bit-2.0.3-17.7 is installed OR libqt4-4.8.7-8.8 is installed OR libqt4-32bit-4.8.7-8.8 is installed OR libqt4-devel-doc-4.8.7-8.8 is installed OR libqt4-qt3support-4.8.7-8.8 is installed OR libqt4-qt3support-32bit-4.8.7-8.8 is installed OR libqt4-sql-4.8.7-8.8 is installed OR libqt4-sql-32bit-4.8.7-8.8 is installed OR libqt4-sql-mysql-4.8.7-8.8 is installed OR libqt4-sql-plugins-4.8.7-8.8 is installed OR libqt4-sql-sqlite-4.8.7-8.8 is installed OR libqt4-x11-4.8.7-8.8 is installed OR libqt4-x11-32bit-4.8.7-8.8 is installed OR qt4-x11-tools-4.8.7-8.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND kdump-0.8.16-9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.27 is installed OR kernel-default-extra-4.12.14-150.27 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information freerdp-2.1.2-15.7 is installed OR freerdp-devel-2.1.2-15.7 is installed OR libfreerdp2-2.1.2-15.7 is installed OR libwinpr2-2.1.2-15.7 is installed OR winpr2-devel-2.1.2-15.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed

BACK