Oval Definition:	oval:org.opensuse.security:def:55547
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important) Description: MozillaFirefox, mozilla-nspr and mozilla-nss were updated to fix 17 security issues. For more details please check the changelogs. - CVE-2015-2724/CVE-2015-2725/CVE-2015-2726: Miscellaneous memory safety hazards (bsc#935979). - CVE-2015-2728: Type confusion in Indexed Database Manager (bsc#935979). - CVE-2015-2730: ECDSA signature validation fails to handle some signatures correctly (bsc#935979). - CVE-2015-2722/CVE-2015-2733: Use-after-free in workers while using XMLHttpRequest (bsc#935979). - CVE-2015-2734/CVE-2015-2735/CVE-2015-2736/CVE-2015-2737/CVE-2015-2738/CVE-2015-2739/CVE-2015-2740: Vulnerabilities found through code inspection (bsc#935979). - CVE-2015-2743: Privilege escalation in PDF.js (bsc#935979). - CVE-2015-4000: NSS accepts export-length DHE keys with regular DHE cipher suites (bsc#935033). - CVE-2015-2721: NSS incorrectly permits skipping of ServerKeyExchange (bsc#935979). Family: unix Class: patch Status: Reference(s): 1040109 1040112 1040113 1040115 1045327 1057950 1060445 1061005 1063671 1064392 1066471 1066472 1073625 1073626 1073629 1111586 1113455 1124194 1132657 1132879 1135247 1152497 1154448 1154456 1154458 1154461 1155945 1161998 578053 830257 851280 856315 877642 901488 907514 910258 918187 918984 920338 923967 927080 928723 932059 932267 933770 933903 935033 935286 935979 940918 944463 944697 945167 947165 949138 950367 950703 950705 950706 966435 966436 CVE-2007-4772 CVE-2009-3939 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2010-1146 CVE-2010-1436 CVE-2010-1641 CVE-2010-2066 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2011-0712 CVE-2011-1020 CVE-2011-1577 CVE-2011-2203 CVE-2012-0056 CVE-2012-2372 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-2207 CVE-2013-2850 CVE-2013-4587 CVE-2013-6367 CVE-2013-6368 CVE-2013-6376 CVE-2013-6405 CVE-2014-00691 CVE-2014-0102 CVE-2014-0131 CVE-2014-0196 CVE-2014-0222 CVE-2014-1545 CVE-2014-2523 CVE-2014-2568 CVE-2014-3185 CVE-2014-3534 CVE-2014-3610 CVE-2014-3611 CVE-2014-3647 CVE-2014-3673 CVE-2014-3687 CVE-2014-3690 CVE-2014-3917 CVE-2014-3940 CVE-2014-4171 CVE-2014-4608 CVE-2014-4652 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-4656 CVE-2014-4699 CVE-2014-4943 CVE-2014-5045 CVE-2014-5077 CVE-2014-5206 CVE-2014-5207 CVE-2014-5471 CVE-2014-5472 CVE-2014-7822 CVE-2014-7826 CVE-2014-7841 CVE-2014-8086 CVE-2014-8121 CVE-2014-8133 CVE-2014-8159 CVE-2014-8160 CVE-2014-8559 CVE-2014-8709 CVE-2014-9090 CVE-2014-9419 CVE-2014-9420 CVE-2014-9584 CVE-2014-9585 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-0272 CVE-2015-0777 CVE-2015-1465 CVE-2015-1781 CVE-2015-1805 CVE-2015-2041 CVE-2015-2042 CVE-2015-2150 CVE-2015-2666 CVE-2015-2721 CVE-2015-2722 CVE-2015-2724 CVE-2015-2725 CVE-2015-2726 CVE-2015-2728 CVE-2015-2730 CVE-2015-2733 CVE-2015-2734 CVE-2015-2735 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 CVE-2015-2740 CVE-2015-2743 CVE-2015-2830 CVE-2015-2922 CVE-2015-3212 CVE-2015-3331 CVE-2015-3332 CVE-2015-3339 CVE-2015-3636 CVE-2015-4000 CVE-2015-4036 CVE-2015-4037 CVE-2015-4167 CVE-2015-4495 CVE-2015-4692 CVE-2015-5156 CVE-2015-5157 CVE-2015-5239 CVE-2015-5283 CVE-2015-5307 CVE-2015-5364 CVE-2015-5366 CVE-2015-6252 CVE-2015-6815 CVE-2015-6937 CVE-2015-7183 CVE-2015-7311 CVE-2015-7613 CVE-2015-7835 CVE-2015-7969 CVE-2015-7971 CVE-2015-8104 CVE-2016-0766 CVE-2016-0773 CVE-2017-1000251 CVE-2017-13080 CVE-2017-15274 CVE-2017-15649 CVE-2017-17785 CVE-2017-17786 CVE-2017-17788 CVE-2017-7793 CVE-2017-7805 CVE-2017-7810 CVE-2017-7814 CVE-2017-7818 CVE-2017-7819 CVE-2017-7823 CVE-2017-7824 CVE-2017-7825 CVE-2017-9111 CVE-2017-9112 CVE-2017-9113 CVE-2017-9115 CVE-2018-12207 CVE-2018-16838 CVE-2018-17095 CVE-2018-18444 CVE-2019-11135 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 SUSE-SU-2015:1269-1 SUSE-SU-2015:1380-1 SUSE-SU-2015:1424-1 SUSE-SU-2015:1908-1 SUSE-SU-2016:0555-1 SUSE-SU-2017:2688-1 SUSE-SU-2017:2786-1 SUSE-SU-2017:3118-1 SUSE-SU-2017:3127-1 SUSE-SU-2018:3588-2 SUSE-SU-2019:1480-1 SUSE-SU-2019:1962-1 SUSE-SU-2019:2962-1 SUSE-SU-2020:0601-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaFirefox-60.0-lp150.2 is installed OR MozillaFirefox-translations-common-60.0-lp150.2 is installed OR MozillaFirefox-translations-other-60.0-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libu2f-host-1.1.6-lp151.2.6 is installed OR libu2f-host-devel-1.1.6-lp151.2.6 is installed OR libu2f-host-doc-1.1.6-lp151.2.6 is installed OR libu2f-host0-1.1.6-lp151.2.6 is installed OR pam_u2f-1.0.8-lp151.2.3 is installed OR u2f-host-1.1.6-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13 is installed OR MozillaFirefox-translations-31.8.0esr-0.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information glibc-2.11.3-17.87 is installed OR glibc-32bit-2.11.3-17.87 is installed OR glibc-devel-2.11.3-17.87 is installed OR glibc-devel-32bit-2.11.3-17.87 is installed OR glibc-i18ndata-2.11.3-17.87 is installed OR glibc-locale-2.11.3-17.87 is installed OR glibc-locale-32bit-2.11.3-17.87 is installed OR nscd-2.11.3-17.87 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.8.0esr-37 is installed OR MozillaFirefox-translations-31.8.0esr-37 is installed OR libfreebl3-3.19.2_CKBI_1.98-21 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-21 is installed OR libsoftokn3-3.19.2_CKBI_1.98-21 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nspr-4.10.8-3 is installed OR mozilla-nspr-32bit-4.10.8-3 is installed OR mozilla-nss-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-certs-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-certs-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information kernel-default-3.12.49-11 is installed OR kernel-default-base-3.12.49-11 is installed OR kernel-default-devel-3.12.49-11 is installed OR kernel-default-man-3.12.49-11 is installed OR kernel-devel-3.12.49-11 is installed OR kernel-macros-3.12.49-11 is installed OR kernel-source-3.12.49-11 is installed OR kernel-syms-3.12.49-11 is installed OR kernel-xen-3.12.49-11 is installed OR kernel-xen-base-3.12.49-11 is installed OR kernel-xen-devel-3.12.49-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-9-4 is installed OR kgraft-patch-3_12_67-60_64_24-xen-9-4 is installed OR kgraft-patch-SLE12-SP1_Update_11-9-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libblkid1-2.28-40 is installed OR libblkid1-32bit-2.28-40 is installed OR libfdisk1-2.28-40 is installed OR libmount1-2.28-40 is installed OR libmount1-32bit-2.28-40 is installed OR libsmartcols1-2.28-40 is installed OR libuuid1-2.28-40 is installed OR libuuid1-32bit-2.28-40 is installed OR python-libmount-2.28-40 is installed OR util-linux-2.28-40 is installed OR util-linux-lang-2.28-40 is installed OR util-linux-systemd-2.28-40 is installed OR uuidd-2.28-40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND xrdp-0.9.0~git.1456906198.f422461-16.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_143-94_47-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND unzip-6.00-33.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information file-5.22-10.6 is installed OR file-magic-5.22-10.6 is installed OR libmagic1-5.22-10.6 is installed OR libmagic1-32bit-5.22-10.6 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information MozillaFirefox-52.4.0esr-109.6 is installed OR MozillaFirefox-devel-52.4.0esr-109.6 is installed OR MozillaFirefox-translations-52.4.0esr-109.6 is installed OR libfreebl3-3.29.5-58.3 is installed OR libfreebl3-32bit-3.29.5-58.3 is installed OR libfreebl3-hmac-3.29.5-58.3 is installed OR libfreebl3-hmac-32bit-3.29.5-58.3 is installed OR libsoftokn3-3.29.5-58.3 is installed OR libsoftokn3-32bit-3.29.5-58.3 is installed OR libsoftokn3-hmac-3.29.5-58.3 is installed OR libsoftokn3-hmac-32bit-3.29.5-58.3 is installed OR mozilla-nss-3.29.5-58.3 is installed OR mozilla-nss-32bit-3.29.5-58.3 is installed OR mozilla-nss-certs-3.29.5-58.3 is installed OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed OR mozilla-nss-devel-3.29.5-58.3 is installed OR mozilla-nss-sysinit-3.29.5-58.3 is installed OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed OR mozilla-nss-tools-3.29.5-58.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed
BACK