OVAL Reference oval:org.opensuse.security:def:53837

Oval Definition:

oval:org.opensuse.security:def:53837

Revision Date:	2020-12-01	Version:	1
Title:	Recommended update for MozillaThunderbird (Important)
Description:	This update for MozillaThunderbird to version 68.2.1 provides the following fixes: - Security issues fixed (bsc#1154738): * CVE-2019-15903: Fixed a heap overflow in the expat library (bsc#1149429). * CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB (bsc#1154738). * CVE-2019-11758: Fixed a potentially exploitable crash due to 360 Total Security (bsc#1154738). * CVE-2019-11759: Fixed a stack buffer overflow in HKDF output (bsc#1154738). * CVE-2019-11760: Fixed a stack buffer overflow in WebRTC networking (bsc#1154738). * CVE-2019-11761: Fixed an unintended access to a privileged JSONView object (bsc#1154738). * CVE-2019-11762: Fixed a same-origin-property violation (bsc#1154738). * CVE-2019-11763: Fixed an XSS bypass (bsc#1154738). * CVE-2019-11764: Fixed several memory safety bugs (bsc#1154738). Other fixes (bsc#1153879): * Some attachments couldn't be opened in messages originating from MS Outlook 2016. * Address book import from CSV. * Performance problem in message body search. * Ctrl+Enter to send a message would open an attachment if the attachment pane had focus. * Calendar: Issues with 'Today Pane' start-up. * Calendar: Glitches with custom repeat and reminder number input. * Calendar: Problems with WCAP provider. * A language for the user interface can now be chosen in the advanced settings * Fixed an issue with Google authentication (OAuth2) * Fixed an issue where selected or unread messages were not shown in the correct color in the thread pane under some circumstances * Fixed an issue where when using a language pack, names of standard folders were not localized (bsc#1149126) * Fixed an issue where the address book default startup directory in preferences panel not persisted * Fixed various visual glitches * Fixed issues with the chat * Fixed building with rust >= 1.38. * Fixrd LTO build without PGO. * Removed kde.js since disabling instantApply breaks extensions and is now obsolete with the move to HTML views for preferences. (bsc#1151186) * Updated create-tar.sh. (bsc#1152778) * Deactivated the crashreporter for the last remaining arch.
Family:	unix	Class:	patch
Status:		Reference(s):	1011283 1011284 1011285 1011286 1011287 1011288 1011289 1011290 1011291 1011292 1011293 1012021 1012022 1012023 1012024 1012025 1012026 1012027 1012028 1012029 1012030 1012031 1012032 1015348 1022555 1026636 1027519 1027570 1028235 1028655 1029827 1030144 1030442 1034843 1034844 1034845 1034994 1035483 1038231 1041783 1042802 1042803 1043088 1045719 1045721 1076366 1081294 1087289 1095242 1096224 1097521 1097522 1097523 1119540 1149126 1149429 1151186 1152778 1153879 1154738 1176410 1177143 909214 912460 931978 CVE-2008-1420 CVE-2009-3379 CVE-2010-0750 CVE-2011-1485 CVE-2012-0444 CVE-2013-1989 CVE-2013-2066 CVE-2013-4288 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-9721 CVE-2015-3218 CVE-2015-3255 CVE-2015-3256 CVE-2015-4625 CVE-2016-5407 CVE-2016-9434 CVE-2016-9435 CVE-2016-9436 CVE-2016-9437 CVE-2016-9438 CVE-2016-9439 CVE-2016-9440 CVE-2016-9441 CVE-2016-9442 CVE-2016-9443 CVE-2016-9603 CVE-2016-9621 CVE-2016-9622 CVE-2016-9623 CVE-2016-9624 CVE-2016-9625 CVE-2016-9626 CVE-2016-9627 CVE-2016-9628 CVE-2016-9629 CVE-2016-9630 CVE-2016-9631 CVE-2016-9632 CVE-2016-9633 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633 CVE-2017-2633 CVE-2017-6414 CVE-2017-6505 CVE-2017-7494 CVE-2017-7511 CVE-2017-7515 CVE-2017-7718 CVE-2017-7980 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-10195 CVE-2018-10392 CVE-2018-10393 CVE-2018-1116 CVE-2018-1160 CVE-2018-11806 CVE-2018-12891 CVE-2018-12892 CVE-2018-12893 CVE-2018-2579 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2629 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-3665 CVE-2018-5146 CVE-2018-7169 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-15903 CVE-2020-25219 CVE-2020-26154 SUSE-SU-2015:1510-1 SUSE-SU-2016:3053-1 SUSE-SU-2017:1147-1 SUSE-SU-2017:1392-1 SUSE-SU-2017:1999-1 SUSE-SU-2018:0661-1 SUSE-SU-2018:0662-1 SUSE-SU-2018:2059-1 SUSE-SU-2018:4217-1 SUSE-SU-2019:2912-1 SUSE-SU-2020:2901-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information apache2-2.4.33-lp150.1 is installed OR apache2-doc-2.4.33-lp150.1 is installed OR apache2-example-pages-2.4.33-lp150.1 is installed OR apache2-prefork-2.4.33-lp150.1 is installed OR apache2-utils-2.4.33-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libpython2_7-1_0-2.7.14-lp151.10.3 is installed OR libpython2_7-1_0-32bit-2.7.14-lp151.10.3 is installed OR python-2.7.14-lp151.10.3 is installed OR python-32bit-2.7.14-lp151.10.3 is installed OR python-base-2.7.14-lp151.10.3 is installed OR python-base-32bit-2.7.14-lp151.10.3 is installed OR python-curses-2.7.14-lp151.10.3 is installed OR python-demo-2.7.14-lp151.10.3 is installed OR python-devel-2.7.14-lp151.10.3 is installed OR python-doc-2.7.14-lp151.10.3 is installed OR python-doc-pdf-2.7.14-lp151.10.3 is installed OR python-gdbm-2.7.14-lp151.10.3 is installed OR python-idle-2.7.14-lp151.10.3 is installed OR python-tk-2.7.14-lp151.10.3 is installed OR python-xml-2.7.14-lp151.10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information compat-openssl097g-0.9.7g-146.22 is installed OR compat-openssl097g-32bit-0.9.7g-146.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libQtWebKit4-4.6.3-5.29 is installed OR libQtWebKit4-32bit-4.6.3-5.29 is installed OR libqt4-4.6.3-5.29 is installed OR libqt4-32bit-4.6.3-5.29 is installed OR libqt4-qt3support-4.6.3-5.29 is installed OR libqt4-qt3support-32bit-4.6.3-5.29 is installed OR libqt4-sql-4.6.3-5.29 is installed OR libqt4-sql-32bit-4.6.3-5.29 is installed OR libqt4-sql-mysql-4.6.3-5.29 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.29 is installed OR libqt4-sql-postgresql-4.6.3-5.29 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.29 is installed OR libqt4-sql-sqlite-4.6.3-5.29 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.29 is installed OR libqt4-sql-unixODBC-4.6.3-5.29 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.29 is installed OR libqt4-x11-4.6.3-5.29 is installed OR libqt4-x11-32bit-4.6.3-5.29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.6.1esr-34 is installed OR MozillaFirefox-translations-38.6.1esr-34 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND unzip-6.00-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND w3m-0.5.3.git20161120-160 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libpoppler-glib8-0.43.0-16.5 is installed OR libpoppler-qt4-4-0.43.0-16.5 is installed OR libpoppler60-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed OR poppler-qt-0.43.0-16.5 is installed OR poppler-tools-0.43.0-16.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information xen-4.9.2_08-3.35 is installed OR xen-libs-4.9.2_08-3.35 is installed OR xen-libs-32bit-4.9.2_08-3.35 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libXv1-1.0.10-7 is installed OR libXv1-32bit-1.0.10-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information coreutils-8.22-9 is installed OR coreutils-lang-8.22-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-2-3 is installed OR kgraft-patch-3_12_74-60_64_40-xen-2-3 is installed OR kgraft-patch-SLE12-SP1_Update_15-2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libldap-2_4-2-2.4.41-18.25 is installed OR libldap-2_4-2-32bit-2.4.41-18.25 is installed OR openldap2-2.4.41-18.25 is installed OR openldap2-back-meta-2.4.41-18.25 is installed OR openldap2-client-2.4.41-18.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dbus-1-1.8.22-28 is installed OR dbus-1-x11-1.8.22-28 is installed OR libdbus-1-3-1.8.22-28 is installed OR libdbus-1-3-32bit-1.8.22-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-demo-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-devel-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-headless-1.7.0.251-43.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libXcursor-1.1.14-4.6 is installed OR libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.2.1-3.58 is installed OR MozillaThunderbird-translations-common-68.2.1-3.58 is installed OR MozillaThunderbird-translations-other-68.2.1-3.58 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libproxy-plugins-0.4.15-4.3 is installed OR libproxy1-config-gnome3-0.4.15-4.3 is installed OR libproxy1-networkmanager-0.4.15-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-designate-1.0.3~a0~dev10-6 is installed OR openstack-designate-agent-1.0.3~a0~dev10-6 is installed OR openstack-designate-api-1.0.3~a0~dev10-6 is installed OR openstack-designate-central-1.0.3~a0~dev10-6 is installed OR openstack-designate-doc-1.0.3~a0~dev10-6 is installed OR openstack-designate-sink-1.0.3~a0~dev10-6 is installed OR openstack-ironic-4.2.5-6 is installed OR openstack-ironic-api-4.2.5-6 is installed OR openstack-ironic-conductor-4.2.5-6 is installed OR openstack-ironic-doc-4.2.5-6 is installed OR openstack-neutron-vpn-agent-7.0.5~a0~dev3-6 is installed OR openstack-neutron-vpnaas-7.0.5~a0~dev3-6 is installed OR openstack-neutron-vpnaas-doc-7.0.5~a0~dev3-6 is installed OR openstack-nova-docker-0.0.1~a0~dev238-4 is installed OR openstack-sahara-3.0.3~a0~dev1-6 is installed OR openstack-sahara-api-3.0.3~a0~dev1-6 is installed OR openstack-sahara-doc-3.0.3~a0~dev1-6 is installed OR openstack-sahara-engine-3.0.3~a0~dev1-6 is installed OR openstack-tempest-7.0.0-9 is installed OR openstack-tempest-test-7.0.0-9 is installed OR openstack-trove-4.0.1~a0~dev19-8 is installed OR openstack-trove-api-4.0.1~a0~dev19-8 is installed OR openstack-trove-conductor-4.0.1~a0~dev19-8 is installed OR openstack-trove-doc-4.0.1~a0~dev19-8 is installed OR openstack-trove-guestagent-4.0.1~a0~dev19-8 is installed OR openstack-trove-taskmanager-4.0.1~a0~dev19-8 is installed OR python-designate-1.0.3~a0~dev10-6 is installed OR python-ironic-4.2.5-6 is installed OR python-neutron-vpnaas-7.0.5~a0~dev3-6 is installed OR python-sahara-3.0.3~a0~dev1-6 is installed OR python-tempest-7.0.0-9 is installed OR python-trove-4.0.1~a0~dev19-8 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information postgresql94-9.4.19-21.22 is installed OR postgresql94-contrib-9.4.19-21.22 is installed OR postgresql94-docs-9.4.19-21.22 is installed OR postgresql94-server-9.4.19-21.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmysqlclient18-10.0.40.1-29.32 is installed OR mariadb-10.0.40.1-29.32 is installed

BACK