OVAL Reference oval:org.opensuse.security:def:53636

Oval Definition:

oval:org.opensuse.security:def:53636

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Important)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53 - CVE-2020-12399: Fixed a timing attack on DSA signature generation (bsc#1171978). - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes mozilla-nspr to version 4.25
Family:	unix	Class:	patch
Status:		Reference(s):	1005544 1012102 1012103 1012104 1013653 1013655 1013663 1032647 1040039 1047184 1052009 1056993 1064069 1064070 1064071 1064072 1064073 1064075 1064077 1064078 1064079 1064080 1064081 1064082 1064083 1064084 1064085 1064086 1076118 1093086 1159670 1159819 1169746 1171978 1175987 1176024 1176294 1176397 1177867 1178319 1178361 1178362 1178485 920160 962052 976340 CVE-2009-2666 CVE-2009-4492 CVE-2010-0541 CVE-2010-1167 CVE-2011-1004 CVE-2011-1005 CVE-2011-1947 CVE-2011-3389 CVE-2011-4815 CVE-2012-2369 CVE-2012-3482 CVE-2012-4504 CVE-2013-1984 CVE-2013-1995 CVE-2013-1998 CVE-2014-9687 CVE-2014-9939 CVE-2015-8833 CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-10165 CVE-2016-1572 CVE-2016-3425 CVE-2016-3427 CVE-2016-4658 CVE-2016-7945 CVE-2016-7946 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-10274 CVE-2017-10281 CVE-2017-10285 CVE-2017-10295 CVE-2017-10345 CVE-2017-10346 CVE-2017-10347 CVE-2017-10348 CVE-2017-10349 CVE-2017-10350 CVE-2017-10355 CVE-2017-10356 CVE-2017-10357 CVE-2017-10388 CVE-2017-12448 CVE-2017-12450 CVE-2017-12452 CVE-2017-12453 CVE-2017-12454 CVE-2017-12456 CVE-2017-12799 CVE-2017-13757 CVE-2017-14128 CVE-2017-14129 CVE-2017-14130 CVE-2017-14333 CVE-2017-14529 CVE-2017-14729 CVE-2017-14745 CVE-2017-14974 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-18266 CVE-2017-3145 CVE-2017-6362 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2019-17006 CVE-2020-12399 CVE-2020-16846 CVE-2020-17490 CVE-2020-25592 SUSE-SU-2016:0241-1 SUSE-SU-2016:1250-1 SUSE-SU-2016:2650-1 SUSE-SU-2017:0210-1 SUSE-SU-2017:2989-1 SUSE-SU-2018:0135-1 SUSE-SU-2018:0303-1 SUSE-SU-2018:1497-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:3244-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information firewall-macros-0.5.3-lp150.1 is installed OR firewalld-0.5.3-lp150.1 is installed OR firewalld-lang-0.5.3-lp150.1 is installed OR python3-firewall-0.5.3-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.3 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information compat-openssl097g-0.9.7g-146.22 is installed OR compat-openssl097g-32bit-0.9.7g-146.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-38.4.0esr-25 is installed OR MozillaFirefox-branding-SLED-38-15 is installed OR MozillaFirefox-translations-38.4.0esr-25 is installed OR libfreebl3-3.19.2.1-19 is installed OR libfreebl3-32bit-3.19.2.1-19 is installed OR libsoftokn3-3.19.2.1-19 is installed OR libsoftokn3-32bit-3.19.2.1-19 is installed OR mozilla-nspr-4.10.10-16 is installed OR mozilla-nspr-32bit-4.10.10-16 is installed OR mozilla-nss-3.19.2.1-19 is installed OR mozilla-nss-32bit-3.19.2.1-19 is installed OR mozilla-nss-tools-3.19.2.1-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information curl-7.19.7-1.46 is installed OR libcurl4-7.19.7-1.46 is installed OR libcurl4-32bit-7.19.7-1.46 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libxml2-2.9.1-26.3 is installed OR libxml2-2-2.9.1-26.3 is installed OR libxml2-2-32bit-2.9.1-26.3 is installed OR libxml2-tools-2.9.1-26.3 is installed OR python-libxml2-2.9.1-26.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND pidgin-plugin-otr-4.0.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND binutils-2.31-9.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gdm-3.10.0.1-23 is installed OR gdm-branding-upstream-3.10.0.1-23 is installed OR gdm-lang-3.10.0.1-23 is installed OR gdmflexiserver-3.10.0.1-23 is installed OR libgdm1-3.10.0.1-23 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_85-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_85-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_26-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libspice-client-glib-2_0-8-0.31-7 is installed OR libspice-client-glib-helper-0.31-7 is installed OR libspice-client-gtk-2_0-4-0.31-7 is installed OR libspice-client-gtk-3_0-4-0.31-7 is installed OR libspice-controller0-0.31-7 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.31-7 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.31-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND atftp-0.7.0-160.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND gdb-8.3.1-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information wicked-0.6.60-38.27 is installed OR wicked-service-0.6.60-38.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-1.7.5-19 is installed OR cups-client-1.7.5-19 is installed OR cups-libs-1.7.5-19 is installed OR cups-libs-32bit-1.7.5-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libfreebl3-3.53-3.40 is installed OR libfreebl3-32bit-3.53-3.40 is installed OR libfreebl3-hmac-3.53-3.40 is installed OR libfreebl3-hmac-32bit-3.53-3.40 is installed OR libsoftokn3-3.53-3.40 is installed OR libsoftokn3-32bit-3.53-3.40 is installed OR libsoftokn3-hmac-3.53-3.40 is installed OR libsoftokn3-hmac-32bit-3.53-3.40 is installed OR mozilla-nspr-4.25-3.12 is installed OR mozilla-nspr-32bit-4.25-3.12 is installed OR mozilla-nspr-devel-4.25-3.12 is installed OR mozilla-nss-3.53-3.40 is installed OR mozilla-nss-32bit-3.53-3.40 is installed OR mozilla-nss-certs-3.53-3.40 is installed OR mozilla-nss-certs-32bit-3.53-3.40 is installed OR mozilla-nss-devel-3.53-3.40 is installed OR mozilla-nss-sysinit-3.53-3.40 is installed OR mozilla-nss-tools-3.53-3.40 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND openstack-heat-templates-0.0.0+git.1452795102.e53f5d3-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed OR webkit2gtk3-devel-2.24.4-2.47 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.29-3.22 is installed OR mariadb-galera-10.2.29-3.22 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-urllib3-1.23-3.6 is installed

BACK