Oval Definition:oval:org.opensuse.security:def:53896
Revision Date:2020-12-01Version:1
Title:Security update for MozillaThunderbird (Important)
Description:

This update for MozillaThunderbird to version 68.10.0 ESR fixes the following issues:

- CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 (bsc#1173576). - CVE-2020-12418: Information disclosure due to manipulated URL object (bsc#1173576). - CVE-2020-12419: Use-after-free in nsGlobalWindowInner (bsc#1173576). - CVE-2020-12420: Use-After-Free when trying to connect to a STUN server (bsc#1173576). - CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates (bsc#1173576).
Family:unixClass:patch
Status:Reference(s):1005778
1005780
1005781
1006180
1009062
1011913
1012382
1012829
1013887
1015336
1015337
1015340
1015342
1015343
1019151
1020645
1020657
1021424
1022476
1022604
1022743
1022967
1023175
1024296
1024405
1028173
1028286
1029693
1030552
1030850
1031492
1031515
1031717
1031784
1033587
1034048
1034075
1034762
1036215
1036303
1036632
1037344
1037404
1037994
1038078
1038583
1038616
1038792
1039915
1040307
1040351
1041958
1042286
1042314
1042422
1042778
1043598
1043652
1044112
1044596
1044636
1045154
1045563
1045922
1046682
1046821
1046985
1047027
1047048
1047096
1047118
1047121
1047152
1047277
1047343
1047354
1047487
1047651
1047653
1047670
1048155
1048221
1048317
1048510
1048891
1048893
1048914
1048934
1049226
1049483
1049486
1049580
1049603
1049645
1049882
1050061
1050188
1051022
1051059
1051239
1051399
1051478
1051479
1051556
1051663
1051790
1052049
1052223
1052533
1052580
1052593
1052709
1052773
1052794
1052888
1053117
1053802
1053915
1053919
1054084
1055013
1055096
1055359
1055493
1055755
1055896
1056261
1056415
1056427
1056588
1056827
1056982
1057015
1057974
1058038
1058116
1058410
1058507
1059051
1059465
1060197
1060799
1061017
1061046
1061064
1061067
1061172
1061831
1061872
1063667
1064206
1064388
1065276
1066156
1068032
1068251
1068588
1070428
1070615
1071224
1071311
1071558
1074254
1075087
1075091
1075724
1075801
1075994
1076263
1076308
1076576
1077925
1080157
1082153
1082299
1082485
1082962
1083125
1083635
1083650
1083900
1084721
1085058
1085185
1085511
1085958
1086416
1087082
1088242
1088865
1089023
1089115
1089198
1089393
1089608
1089644
1089752
1089895
1089925
1090051
1090225
1090643
1090658
1090663
1090708
1090718
1090734
1090953
1091041
1091325
1091728
1091925
1091960
1092289
1092497
1092566
1092885
1092904
1093008
1093144
1093215
1094019
1173576
802154
897422
899192
900881
907764
909312
913232
914742
915540
916225
917125
919007
919018
920262
921769
922583
922734
922944
924519
924664
924803
924809
925567
926156
926240
926314
927084
927115
927116
927257
927285
927308
927455
928122
928130
928135
928141
928708
929092
929145
929525
929883
930224
930226
930669
930786
931014
931130
936862
953817
964063
966170
966172
966186
966191
968973
969476
969477
971965
971975
972197
973031
973032
973033
973034
973036
973832
974215
974629
981309
981348
983273
CVE-2004-2771
CVE-2011-1709
CVE-2013-6418
CVE-2014-3647
CVE-2014-7844
CVE-2014-8086
CVE-2014-8104
CVE-2014-8159
CVE-2015-1465
CVE-2015-2041
CVE-2015-2042
CVE-2015-2666
CVE-2015-2830
CVE-2015-2922
CVE-2015-3331
CVE-2015-3332
CVE-2015-3339
CVE-2015-3636
CVE-2015-5370
CVE-2015-8023
CVE-2015-8899
CVE-2016-2110
CVE-2016-2111
CVE-2016-2112
CVE-2016-2113
CVE-2016-2115
CVE-2016-2118
CVE-2016-3698
CVE-2017-1000252
CVE-2017-10810
CVE-2017-11472
CVE-2017-11473
CVE-2017-12134
CVE-2017-12153
CVE-2017-12154
CVE-2017-13080
CVE-2017-14051
CVE-2017-14106
CVE-2017-14489
CVE-2017-15649
CVE-2017-15908
CVE-2017-18078
CVE-2017-7518
CVE-2017-7541
CVE-2017-7542
CVE-2017-8831
CVE-2018-1000199
CVE-2018-10087
CVE-2018-10124
CVE-2018-10195
CVE-2018-1049
CVE-2018-1065
CVE-2018-1130
CVE-2018-3639
CVE-2018-5803
CVE-2018-7492
CVE-2018-8781
CVE-2020-12417
CVE-2020-12418
CVE-2020-12419
CVE-2020-12420
CVE-2020-12421
SUSE-SU-2015:1071-1
SUSE-SU-2015:2183-1
SUSE-SU-2016:1024-1
SUSE-SU-2016:3269-1
SUSE-SU-2017:2869-1
SUSE-SU-2018:0299-1
SUSE-SU-2018:0546-1
SUSE-SU-2018:1066-1
SUSE-SU-2018:1366-1
SUSE-SU-2018:1378-1
SUSE-SU-2020:1900-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gpg2-2.2.5-lp150.2 is installed
  • OR gpg2-lang-2.2.5-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libxslt-1.1.32-lp151.3.3 is installed
  • OR libxslt-devel-1.1.32-lp151.3.3 is installed
  • OR libxslt-devel-32bit-1.1.32-lp151.3.3 is installed
  • OR libxslt-python-1.1.32-lp151.3.3 is installed
  • OR libxslt-tools-1.1.32-lp151.3.3 is installed
  • OR libxslt1-1.1.32-lp151.3.3 is installed
  • OR libxslt1-32bit-1.1.32-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-17.0.10esr-0.4.2 is installed
  • OR MozillaFirefox-branding-SLED-7-0.6.9 is installed
  • OR MozillaFirefox-translations-17.0.10esr-0.4.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.10 is installed
  • OR MozillaFirefox-translations-31.8.0esr-0.10 is installed
  • OR libfreebl3-3.19.2_CKBI_1.98-0.10 is installed
  • OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR libsoftokn3-3.19.2_CKBI_1.98-0.10 is installed
  • OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nspr-4.10.8-0.5 is installed
  • OR mozilla-nspr-32bit-4.10.8-0.5 is installed
  • OR mozilla-nss-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND kvm-1.4.2-35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • gdm-3.10.0.1-13 is installed
  • OR gdm-branding-upstream-3.10.0.1-13 is installed
  • OR gdm-lang-3.10.0.1-13 is installed
  • OR gdmflexiserver-3.10.0.1-13 is installed
  • OR libgdm1-3.10.0.1-13 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libdcerpc-binding0-4.2.4-16 is installed
  • OR libdcerpc-binding0-32bit-4.2.4-16 is installed
  • OR libdcerpc0-4.2.4-16 is installed
  • OR libdcerpc0-32bit-4.2.4-16 is installed
  • OR libgensec0-4.2.4-16 is installed
  • OR libgensec0-32bit-4.2.4-16 is installed
  • OR libndr-krb5pac0-4.2.4-16 is installed
  • OR libndr-krb5pac0-32bit-4.2.4-16 is installed
  • OR libndr-nbt0-4.2.4-16 is installed
  • OR libndr-nbt0-32bit-4.2.4-16 is installed
  • OR libndr-standard0-4.2.4-16 is installed
  • OR libndr-standard0-32bit-4.2.4-16 is installed
  • OR libndr0-4.2.4-16 is installed
  • OR libndr0-32bit-4.2.4-16 is installed
  • OR libnetapi0-4.2.4-16 is installed
  • OR libnetapi0-32bit-4.2.4-16 is installed
  • OR libregistry0-4.2.4-16 is installed
  • OR libsamba-credentials0-4.2.4-16 is installed
  • OR libsamba-credentials0-32bit-4.2.4-16 is installed
  • OR libsamba-hostconfig0-4.2.4-16 is installed
  • OR libsamba-hostconfig0-32bit-4.2.4-16 is installed
  • OR libsamba-passdb0-4.2.4-16 is installed
  • OR libsamba-passdb0-32bit-4.2.4-16 is installed
  • OR libsamba-util0-4.2.4-16 is installed
  • OR libsamba-util0-32bit-4.2.4-16 is installed
  • OR libsamdb0-4.2.4-16 is installed
  • OR libsamdb0-32bit-4.2.4-16 is installed
  • OR libsmbclient-raw0-4.2.4-16 is installed
  • OR libsmbclient-raw0-32bit-4.2.4-16 is installed
  • OR libsmbclient0-4.2.4-16 is installed
  • OR libsmbclient0-32bit-4.2.4-16 is installed
  • OR libsmbconf0-4.2.4-16 is installed
  • OR libsmbconf0-32bit-4.2.4-16 is installed
  • OR libsmbldap0-4.2.4-16 is installed
  • OR libsmbldap0-32bit-4.2.4-16 is installed
  • OR libtevent-util0-4.2.4-16 is installed
  • OR libtevent-util0-32bit-4.2.4-16 is installed
  • OR libwbclient0-4.2.4-16 is installed
  • OR libwbclient0-32bit-4.2.4-16 is installed
  • OR samba-4.2.4-16 is installed
  • OR samba-32bit-4.2.4-16 is installed
  • OR samba-client-4.2.4-16 is installed
  • OR samba-client-32bit-4.2.4-16 is installed
  • OR samba-doc-4.2.4-16 is installed
  • OR samba-libs-4.2.4-16 is installed
  • OR samba-libs-32bit-4.2.4-16 is installed
  • OR samba-winbind-4.2.4-16 is installed
  • OR samba-winbind-32bit-4.2.4-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND dnsmasq-2.71-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libsystemd0-228-150.29 is installed
  • OR libsystemd0-32bit-228-150.29 is installed
  • OR libudev1-228-150.29 is installed
  • OR libudev1-32bit-228-150.29 is installed
  • OR systemd-228-150.29 is installed
  • OR systemd-32bit-228-150.29 is installed
  • OR systemd-bash-completion-228-150.29 is installed
  • OR systemd-sysvinit-228-150.29 is installed
  • OR udev-228-150.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libndp0-1.6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND davfs2-1.5.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-5-4 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-5-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-5-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND logrotate-3.8.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • ghostscript-9.52-23.34 is installed
  • OR ghostscript-x11-9.52-23.34 is installed
  • OR libspectre-0.2.7-12.10 is installed
  • OR libspectre1-0.2.7-12.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.131-26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_64-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_20-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • tomcat-8.0.53-29.13 is installed
  • OR tomcat-admin-webapps-8.0.53-29.13 is installed
  • OR tomcat-docs-webapp-8.0.53-29.13 is installed
  • OR tomcat-el-3_0-api-8.0.53-29.13 is installed
  • OR tomcat-javadoc-8.0.53-29.13 is installed
  • OR tomcat-jsp-2_3-api-8.0.53-29.13 is installed
  • OR tomcat-lib-8.0.53-29.13 is installed
  • OR tomcat-servlet-3_1-api-8.0.53-29.13 is installed
  • OR tomcat-webapps-8.0.53-29.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • MozillaThunderbird-68.10.0-3.88 is installed
  • OR MozillaThunderbird-translations-common-68.10.0-3.88 is installed
  • OR MozillaThunderbird-translations-other-68.10.0-3.88 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-multi_xml-0.5.5-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ruby2.1-rubygem-rack-1.6.11-3.3 is installed
  • OR rubygem-rack-1.6.11-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-Django-1.11.11-3.3 is installed
    • BACK