Oval Definition:oval:org.opensuse.security:def:55984
Revision Date:2021-12-12Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:unixClass:patch
Status:Reference(s):1002991
1002995
1002998
1003000
1003002
1003012
1003017
1003023
1019274
1020102
1023012
1051684
1051685
1053259
1118319
1118320
1146358
1146359
1151021
1155787
1193321
1193485
857544
923534
924519
934524
934525
934526
934527
934528
934529
935979
936862
951391
952196
968973
971965
972197
973031
973032
973033
973034
973036
973832
974449
974614
974618
974629
975069
975070
CVE-2009-0316
CVE-2014-0209
CVE-2014-0210
CVE-2014-0211
CVE-2014-9732
CVE-2015-0286
CVE-2015-0288
CVE-2015-0817
CVE-2015-0818
CVE-2015-1789
CVE-2015-1793
CVE-2015-4467
CVE-2015-4469
CVE-2015-4470
CVE-2015-4471
CVE-2015-4472
CVE-2015-4730
CVE-2015-4766
CVE-2015-4792
CVE-2015-4800
CVE-2015-4802
CVE-2015-4815
CVE-2015-4816
CVE-2015-4819
CVE-2015-4826
CVE-2015-4830
CVE-2015-4833
CVE-2015-4836
CVE-2015-4858
CVE-2015-4861
CVE-2015-4862
CVE-2015-4864
CVE-2015-4866
CVE-2015-4870
CVE-2015-4879
CVE-2015-4890
CVE-2015-4895
CVE-2015-4904
CVE-2015-4905
CVE-2015-4910
CVE-2015-4913
CVE-2015-5370
CVE-2016-10207
CVE-2016-2110
CVE-2016-2111
CVE-2016-2112
CVE-2016-2113
CVE-2016-2115
CVE-2016-2118
CVE-2016-3622
CVE-2016-3623
CVE-2016-3945
CVE-2016-3990
CVE-2016-3991
CVE-2016-5407
CVE-2016-7942
CVE-2016-7944
CVE-2016-7945
CVE-2016-7946
CVE-2016-7947
CVE-2016-7948
CVE-2016-7949
CVE-2016-7950
CVE-2016-7951
CVE-2016-7952
CVE-2016-7953
CVE-2016-9941
CVE-2016-9942
CVE-2017-0381
CVE-2017-2518
CVE-2017-7546
CVE-2017-7547
CVE-2017-7548
CVE-2018-9568
CVE-2019-14835
CVE-2019-8675
CVE-2019-8696
CVE-2021-43536
CVE-2021-43537
CVE-2021-43538
CVE-2021-43539
CVE-2021-43541
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
SUSE-SU-2015:0593-1
SUSE-SU-2015:0674-1
SUSE-SU-2015:1444-1
SUSE-SU-2015:2215-1
SUSE-SU-2015:2303-1
SUSE-SU-2016:1024-1
SUSE-SU-2016:2508-1
SUSE-SU-2016:2828-1
SUSE-SU-2017:0436-1
SUSE-SU-2017:0519-1
SUSE-SU-2017:2356-1
SUSE-SU-2019:3050-1
SUSE-SU-2019:3057-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-lp150.3 is installed
  • OR libjpeg8-8.1.2-lp150.3 is installed
  • OR libturbojpeg0-8.1.2-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-75.0.3770.90-2 is installed
  • OR chromium-75.0.3770.90-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.5.3esr-0.8 is installed
  • OR MozillaFirefox-translations-31.5.3esr-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • mozilla-nspr-4.10.8-0.8 is installed
  • OR mozilla-nspr-32bit-4.10.8-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • tigervnc-1.4.3-19 is installed
  • OR xorg-x11-Xvnc-1.4.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libX11-1.6.2-8 is installed
  • OR libX11-6-1.6.2-8 is installed
  • OR libX11-6-32bit-1.6.2-8 is installed
  • OR libX11-data-1.6.2-8 is installed
  • OR libX11-xcb1-1.6.2-8 is installed
  • OR libX11-xcb1-32bit-1.6.2-8 is installed
  • OR libXfixes-5.0.1-7 is installed
  • OR libXfixes3-5.0.1-7 is installed
  • OR libXfixes3-32bit-5.0.1-7 is installed
  • OR libXi-1.7.4-14 is installed
  • OR libXi6-1.7.4-14 is installed
  • OR libXi6-32bit-1.7.4-14 is installed
  • OR libXrender-0.9.8-7 is installed
  • OR libXrender1-0.9.8-7 is installed
  • OR libXrender1-32bit-0.9.8-7 is installed
  • OR libXtst-1.2.2-7 is installed
  • OR libXtst6-1.2.2-7 is installed
  • OR libXtst6-32bit-1.2.2-7 is installed
  • OR libXv-1.0.10-7 is installed
  • OR libXv1-1.0.10-7 is installed
  • OR libXv1-32bit-1.0.10-7 is installed
  • OR libXvMC-1.0.8-7 is installed
  • OR libXvMC1-1.0.8-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gvim-7.4.326-2 is installed
  • OR vim-7.4.326-2 is installed
  • OR vim-data-7.4.326-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_96-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_96-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_29-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • MozillaFirefox-60.3.0-109.50 is installed
  • OR MozillaFirefox-devel-60.3.0-109.50 is installed
  • OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openssh-7.2p2-74.25 is installed
  • OR openssh-askpass-gnome-7.2p2-74.25 is installed
  • OR openssh-fips-7.2p2-74.25 is installed
  • OR openssh-helpers-7.2p2-74.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_35-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_12-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libtcnative-1-0-1.1.34-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_175-94_79-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsndfile-1.0.25-36.16 is installed
  • OR libsndfile1-1.0.25-36.16 is installed
  • OR libsndfile1-32bit-1.0.25-36.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND clamav-0.100.2-33.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • libecpg6-9.6.4-3.6 is installed
  • OR libpq5-9.6.4-3.6 is installed
  • OR libpq5-32bit-9.6.4-3.6 is installed
  • OR postgresql96-9.6.4-3.6 is installed
  • OR postgresql96-contrib-9.6.4-3.6 is installed
  • OR postgresql96-docs-9.6.4-3.6 is installed
  • OR postgresql96-libs-9.6.4-3.6 is installed
  • OR postgresql96-server-9.6.4-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ansible-2.2.3.0-5 is installed
  • OR monasca-installer-20170912_10.45-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • BACK