Oval Definition:oval:org.opensuse.security:def:56729
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Moderate)
Description:

This update for MozillaFirefox fixes the following issues:

Security issues fixed in Firefox ESR 52.7.3 (bsc#1085130):

- CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 - CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList - CVE-2018-5129: Out-of-bounds write with malformed IPC messages - CVE-2018-5130: Mismatched RTP payload type can trigger memory corruption - CVE-2018-5131: Fetch API improperly returns cached copies of no-store/no-cache resources - CVE-2018-5144: Integer overflow during Unicode conversion - CVE-2018-5145: Memory safety bugs fixed in Firefox ESR 52.7 - CVE-2018-5146: Out of bounds memory write in libvorbis (bsc#1085671) - CVE-2018-5147: Out of bounds memory write in libtremor (bsc#1085671) - CVE-2018-5148: Use-after-free in compositor (MFSA 2018-10) (bsc#1087059)

Family:unixClass:patch
Status:Reference(s):1003577
1003579
1003580
1013882
1052481
1055857
1059893
1063535
1074662
1080919
1085130
1085671
1086825
1087059
1092098
1112767
1113107
1117951
1118004
1120767
1120943
1121563
1122053
1122875
1123709
1125352
1126056
1127557
1127558
1127752
1128657
1128954
1128987
1129346
1130230
1130414
1131053
1131291
1132348
1132400
1132721
1160770
1166844
1171475
1171847
1172031
1172105
1172116
1172121
1172225
930077
930078
930079
937419
952254
953382
953972
955942
960249
960996
962177
962743
964023
966271
968222
CVE-2011-1098
CVE-2011-1154
CVE-2011-1155
CVE-2014-3430
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-5310
CVE-2015-7560
CVE-2015-7575
CVE-2015-8041
CVE-2015-8126
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0475
CVE-2016-0483
CVE-2016-0494
CVE-2016-6328
CVE-2016-9840
CVE-2016-9841
CVE-2016-9842
CVE-2016-9843
CVE-2017-1000117
CVE-2017-1000433
CVE-2017-7544
CVE-2018-1000301
CVE-2018-1000872
CVE-2018-20030
CVE-2018-5125
CVE-2018-5127
CVE-2018-5129
CVE-2018-5130
CVE-2018-5131
CVE-2018-5144
CVE-2018-5145
CVE-2018-5146
CVE-2018-5147
CVE-2018-5148
CVE-2018-6954
CVE-2019-20807
CVE-2019-3842
CVE-2019-6454
CVE-2019-9278
CVE-2019-9636
CVE-2020-0093
CVE-2020-10531
CVE-2020-12767
CVE-2020-13112
CVE-2020-13113
CVE-2020-13114
SUSE-SU-2016:0256-1
SUSE-SU-2016:0816-1
SUSE-SU-2016:2305-1
SUSE-SU-2017:0004-1
SUSE-SU-2017:2320-1
SUSE-SU-2018:0850-1
SUSE-SU-2019:0961-1
SUSE-SU-2019:1124-1
SUSE-SU-2019:1265-1
SUSE-SU-2019:1450-1
SUSE-SU-2020:1180-1
SUSE-SU-2020:1534-1
SUSE-SU-2020:1550-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • curl-7.59.0-lp150.1 is installed
  • OR libcurl4-7.59.0-lp150.1 is installed
  • OR libcurl4-32bit-7.59.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • java-11-openjdk-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-accessibility-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-demo-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-devel-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-headless-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-javadoc-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-jmods-11.0.4.0-lp151.3.6 is installed
  • OR java-11-openjdk-src-11.0.4.0-lp151.3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.7.3esr-109.25 is installed
  • OR MozillaFirefox-translations-52.7.3esr-109.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND wpa_supplicant-2.2-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.5 is installed
  • OR git-core-2.12.3-27.5 is installed
  • OR git-doc-2.12.3-27.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • dovecot22-2.2.13-2 is installed
  • OR dovecot22-backend-mysql-2.2.13-2 is installed
  • OR dovecot22-backend-pgsql-2.2.13-2 is installed
  • OR dovecot22-backend-sqlite-2.2.13-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-default-man-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dovecot22-2.2.30.2-14 is installed
  • OR dovecot22-backend-mysql-2.2.30.2-14 is installed
  • OR dovecot22-backend-pgsql-2.2.30.2-14 is installed
  • OR dovecot22-backend-sqlite-2.2.30.2-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libshibsp-lite6-2.5.5-6.6 is installed
  • OR libshibsp6-2.5.5-6.6 is installed
  • OR shibboleth-sp-2.5.5-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND clamav-0.100.3-33.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libXp6-1.0.2-3 is installed
  • OR libXp6-32bit-1.0.2-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • curl-7.37.0-37.23 is installed
  • OR libcurl4-7.37.0-37.23 is installed
  • OR libcurl4-32bit-7.37.0-37.23 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • caasp-openstack-heat-templates-1.0+git.1553079189.3bf8922-1.6 is installed
  • OR crowbar-4.0+git.1551088848.823bcaa3-7.29 is installed
  • OR crowbar-core-4.0+git.1556285635.ab602dd4d-9.46 is installed
  • OR crowbar-core-branding-upstream-4.0+git.1556285635.ab602dd4d-9.46 is installed
  • OR crowbar-devel-4.0+git.1551088848.823bcaa3-7.29 is installed
  • OR crowbar-ha-4.0+git.1556181005.47c643d-4.46 is installed
  • OR crowbar-openstack-4.0+git.1554887450.ff7c30c1c-9.51 is installed
  • OR galera-python-clustercheck-0.0+git.1506329536.8f5878c-1.6 is installed
  • OR openstack-ceilometer-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-agent-central-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-agent-compute-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-agent-ipmi-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-agent-notification-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-api-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-collector-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-doc-7.1.1~dev4-4.15 is installed
  • OR openstack-ceilometer-polling-7.1.1~dev4-4.15 is installed
  • OR openstack-heat-gbp-5.1.1~dev1-2.6 is installed
  • OR python-PyKMIP-0.5.0-3.3 is installed
  • OR python-ceilometer-7.1.1~dev4-4.15 is installed
  • OR python-heat-gbp-5.1.1~dev1-2.6 is installed
  • OR python-pysaml2-4.0.2-3.6 is installed
  • OR ruby2.1-rubygem-crowbar-client-3.9.0-7.14 is installed
  • OR rubygem-crowbar-client-3.9.0-7.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • grub2-2.02-4.53 is installed
  • OR grub2-i386-pc-2.02-4.53 is installed
  • OR grub2-snapper-plugin-2.02-4.53 is installed
  • OR grub2-systemd-sleep-plugin-2.02-4.53 is installed
  • OR grub2-x86_64-efi-2.02-4.53 is installed
  • OR grub2-x86_64-xen-2.02-4.53 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND nodejs6-6.17.1-11.37 is installed
    • BACK