Oval Definition:oval:org.opensuse.security:def:53856
Revision Date:2020-12-01Version:1
Title:Security update for MozillaThunderbird (Important)
Description:

This update for MozillaThunderbird fixes the following issues:

Mozilla Thunderbird 68.9.0 (bsc#1172402)

- CVE-2020-12405: Fixed a use-after-free in SharedWorkerService. - CVE-2020-12406: Fixed a JavaScript Type confusion with NativeTypes. - CVE-2020-12410: Fixed multiple memory safety issues - CVE-2020-12398: Fixed a potential information leak due to security downgrade with IMAP STARTTLS - Use a symbolic icon from branding internals
Family:unixClass:patch
Status:Reference(s):1008539
1010829
1013659
1013678
1013680
1015565
1034584
1034827
1036494
1037824
1038709
1038711
1038713
1043290
1047262
1050087
1054311
1056434
1058630
1059735
1060382
1066168
1066170
1082283
1082291
1082348
1082362
1082792
1082837
1083628
1083634
1085130
1085671
1086011
1087059
1101147
1172402
856382
886785
898159
907973
908950
912183
914818
916543
920016
922071
922220
922221
922222
922223
923142
924722
929092
929871
930813
932285
932350
934430
934920
934942
934962
936556
936773
937609
937612
937613
937616
938550
938706
938891
938892
938893
939145
939266
939716
939834
939994
940398
940545
940679
940776
940912
940925
940965
941098
941305
941908
941951
942160
942204
942307
942367
948536
995374
CVE-2009-0696
CVE-2009-4022
CVE-2010-3170
CVE-2010-3613
CVE-2010-3614
CVE-2010-3615
CVE-2011-0414
CVE-2011-1098
CVE-2011-1154
CVE-2011-1155
CVE-2011-1907
CVE-2011-1910
CVE-2011-2199
CVE-2011-2464
CVE-2011-3389
CVE-2011-3640
CVE-2011-4313
CVE-2012-1667
CVE-2012-3817
CVE-2012-3868
CVE-2012-4244
CVE-2012-4425
CVE-2012-5166
CVE-2012-5688
CVE-2012-5689
CVE-2013-0743
CVE-2013-0791
CVE-2013-1620
CVE-2013-1739
CVE-2013-1740
CVE-2013-2266
CVE-2013-4854
CVE-2013-5605
CVE-2014-0591
CVE-2014-1492
CVE-2014-1568
CVE-2014-1569
CVE-2014-9140
CVE-2015-0261
CVE-2015-2153
CVE-2015-2154
CVE-2015-2155
CVE-2015-3238
CVE-2015-4000
CVE-2015-5156
CVE-2015-5157
CVE-2015-5283
CVE-2015-5697
CVE-2015-6252
CVE-2015-6937
CVE-2015-7181
CVE-2015-7182
CVE-2015-7575
CVE-2015-7613
CVE-2016-1938
CVE-2016-1950
CVE-2016-1978
CVE-2016-1979
CVE-2016-2834
CVE-2016-5285
CVE-2016-6329
CVE-2016-8635
CVE-2016-9074
CVE-2016-9445
CVE-2016-9446
CVE-2016-9574
CVE-2016-9809
CVE-2016-9812
CVE-2016-9813
CVE-2017-1000024
CVE-2017-11524
CVE-2017-12194
CVE-2017-12692
CVE-2017-12693
CVE-2017-13768
CVE-2017-14314
CVE-2017-14505
CVE-2017-14739
CVE-2017-15016
CVE-2017-15017
CVE-2017-16352
CVE-2017-16353
CVE-2017-18209
CVE-2017-18211
CVE-2017-7478
CVE-2017-7479
CVE-2017-7805
CVE-2017-8288
CVE-2017-9500
CVE-2018-10873
CVE-2018-10893
CVE-2018-10900
CVE-2018-5125
CVE-2018-5127
CVE-2018-5129
CVE-2018-5130
CVE-2018-5131
CVE-2018-5144
CVE-2018-5145
CVE-2018-5146
CVE-2018-5147
CVE-2018-5148
CVE-2018-7443
CVE-2018-7470
CVE-2018-8804
CVE-2020-12398
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
SUSE-SU-2015:0679-1
SUSE-SU-2015:1727-1
SUSE-SU-2016:3297-1
SUSE-SU-2017:1398-1
SUSE-SU-2017:1622-1
SUSE-SU-2017:2217-1
SUSE-SU-2018:0637-1
SUSE-SU-2018:0850-1
SUSE-SU-2018:0857-1
SUSE-SU-2018:2297-1
SUSE-SU-2020:1591-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cracklib-2.9.6-lp150.2 is installed
  • OR libcrack2-2.9.6-lp150.2 is installed
  • OR libcrack2-32bit-2.9.6-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND putty-0.72-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • glibc-2.11.3-17.45.49 is installed
  • OR glibc-32bit-2.11.3-17.45.49 is installed
  • OR glibc-devel-2.11.3-17.45.49 is installed
  • OR glibc-devel-32bit-2.11.3-17.45.49 is installed
  • OR glibc-i18ndata-2.11.3-17.45.49 is installed
  • OR glibc-locale-2.11.3-17.45.49 is installed
  • OR glibc-locale-32bit-2.11.3-17.45.49 is installed
  • OR nscd-2.11.3-17.45.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • ImageMagick-6.4.3.6-7.30 is installed
  • OR libMagick++1-6.4.3.6-7.30 is installed
  • OR libMagickCore1-6.4.3.6-7.30 is installed
  • OR libMagickCore1-32bit-6.4.3.6-7.30 is installed
  • OR libMagickWand1-6.4.3.6-7.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-38.3.0esr-22 is installed
  • OR MozillaFirefox-translations-38.3.0esr-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • bind-libs-9.9.5P1-1 is installed
  • OR bind-libs-32bit-9.9.5P1-1 is installed
  • OR bind-utils-9.9.5P1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.2.4-3.4 is installed
  • OR gstreamer-plugins-bad-lang-1.2.4-3.4 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.2.4-3.4 is installed
  • OR libgstcodecparsers-1_0-0-1.2.4-3.4 is installed
  • OR libgstegl-1_0-0-1.2.4-3.4 is installed
  • OR libgstmpegts-1_0-0-1.2.4-3.4 is installed
  • OR libgstphotography-1_0-0-1.2.4-3.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • gnome-shell-3.20.4-77.7 is installed
  • OR gnome-shell-browser-plugin-3.20.4-77.7 is installed
  • OR gnome-shell-calendar-3.20.4-77.7 is installed
  • OR gnome-shell-lang-3.20.4-77.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • NetworkManager-vpnc-1.0.8-8.4 is installed
  • OR NetworkManager-vpnc-gnome-1.0.8-8.4 is installed
  • OR NetworkManager-vpnc-lang-1.0.8-8.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libfreebl3-3.29.5-58.12 is installed
  • OR libfreebl3-32bit-3.29.5-58.12 is installed
  • OR libsoftokn3-3.29.5-58.12 is installed
  • OR libsoftokn3-32bit-3.29.5-58.12 is installed
  • OR mozilla-nss-3.29.5-58.12 is installed
  • OR mozilla-nss-32bit-3.29.5-58.12 is installed
  • OR mozilla-nss-certs-3.29.5-58.12 is installed
  • OR mozilla-nss-certs-32bit-3.29.5-58.12 is installed
  • OR mozilla-nss-sysinit-3.29.5-58.12 is installed
  • OR mozilla-nss-sysinit-32bit-3.29.5-58.12 is installed
  • OR mozilla-nss-tools-3.29.5-58.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • elfutils-0.158-6 is installed
  • OR libasm1-0.158-6 is installed
  • OR libasm1-32bit-0.158-6 is installed
  • OR libdw1-0.158-6 is installed
  • OR libdw1-32bit-0.158-6 is installed
  • OR libebl1-0.158-6 is installed
  • OR libebl1-32bit-0.158-6 is installed
  • OR libelf1-0.158-6 is installed
  • OR libelf1-32bit-0.158-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND clamav-0.99.2-32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libpng15-15-1.5.22-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libblkid1-2.28-44.18 is installed
  • OR libblkid1-32bit-2.28-44.18 is installed
  • OR libfdisk1-2.28-44.18 is installed
  • OR libmount1-2.28-44.18 is installed
  • OR libmount1-32bit-2.28-44.18 is installed
  • OR libsmartcols1-2.28-44.18 is installed
  • OR libuuid1-2.28-44.18 is installed
  • OR libuuid1-32bit-2.28-44.18 is installed
  • OR python-libmount-2.28-44.18 is installed
  • OR util-linux-2.28-44.18 is installed
  • OR util-linux-lang-2.28-44.18 is installed
  • OR util-linux-systemd-2.28-44.18 is installed
  • OR uuidd-2.28-44.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ft2demos-2.6.3-7.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_61-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • at-3.1.14-8.6 is installed
  • OR flex-2.5.37-8 is installed
  • OR flex-32bit-2.5.37-8 is installed
  • OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-doc-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-Pillow-2.8.1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ghostscript-9.27-23.31 is installed
  • OR ghostscript-x11-9.27-23.31 is installed
    • BACK