OVAL Reference oval:org.opensuse.security:def:56767

Oval Definition:

oval:org.opensuse.security:def:56767

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox to the ESR 52.8 release fixes the following issues: Mozil to Firefox ESR 52.8 (bsc#1092548) Security issues fixed: - MFSA 2018-12/CVE-2018-5159: Integer overflow and out-of-bounds write in Skia - MFSA 2018-12/CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer - MFSA 2018-12/CVE-2018-5168: Lightweight themes can be installed without user interaction - MFSA 2018-12/CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 - MFSA 2018-12/CVE-2018-5155: Use-after-free with SVG animations and text paths - MFSA 2018-12/CVE-2018-5183: Backport critical security fixes in Skia - MFSA 2018-12/CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files - MFSA 2018-12/CVE-2018-5154: Use-after-free with SVG animations and clip paths - MFSA 2018-12/CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension
Family:	unix	Class:	patch
Status:		Reference(s):	1002626 1010457 1012546 1015187 1045327 1057950 1083630 1092548 1102682 1133191 1133719 1134689 1138301 1138303 1160968 1162972 1172405 1174662 960996 962743 979441 980391 982366 983549 983638 983639 983643 983646 983651 983652 983653 983655 984006 984126 985659 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2013-6418 CVE-2015-1283 CVE-2015-7575 CVE-2015-8126 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0475 CVE-2016-0483 CVE-2016-0494 CVE-2016-0718 CVE-2016-1246 CVE-2016-1249 CVE-2016-1251 CVE-2016-2815 CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2824 CVE-2016-2828 CVE-2016-2831 CVE-2016-2834 CVE-2016-9933 CVE-2017-1000251 CVE-2017-12627 CVE-2017-15274 CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5168 CVE-2018-5174 CVE-2018-5178 CVE-2018-5183 CVE-2018-5390 CVE-2019-10130 CVE-2019-10161 CVE-2019-10167 CVE-2019-11487 CVE-2019-4732 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 CVE-2020-8022 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 SUSE-SU-2016:0256-1 SUSE-SU-2016:1508-1 SUSE-SU-2016:1691-1 SUSE-SU-2016:3211-1 SUSE-SU-2017:0123-1 SUSE-SU-2017:2790-1 SUSE-SU-2018:1334-1 SUSE-SU-2019:1687-1 SUSE-SU-2019:1767-1 SUSE-SU-2019:2105-1 SUSE-SU-2020:0528-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:2225-1 SUSE-SU-2020:2232-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information graphviz-2.40.1-lp151.6.3 is installed OR graphviz-addons-2.40.1-lp151.6.3 is installed OR graphviz-devel-2.40.1-lp151.6.3 is installed OR graphviz-doc-2.40.1-lp151.6.3 is installed OR graphviz-gd-2.40.1-lp151.6.3 is installed OR graphviz-gnome-2.40.1-lp151.6.3 is installed OR graphviz-guile-2.40.1-lp151.6.3 is installed OR graphviz-gvedit-2.40.1-lp151.6.3 is installed OR graphviz-java-2.40.1-lp151.6.3 is installed OR graphviz-lua-2.40.1-lp151.6.3 is installed OR graphviz-perl-2.40.1-lp151.6.3 is installed OR graphviz-php-2.40.1-lp151.6.3 is installed OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed OR graphviz-python-2.40.1-lp151.6.3 is installed OR graphviz-ruby-2.40.1-lp151.6.3 is installed OR graphviz-smyrna-2.40.1-lp151.6.3 is installed OR graphviz-tcl-2.40.1-lp151.6.3 is installed OR libgraphviz6-2.40.1-lp151.6.3 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-63.0.3368.66-lp151.2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.8.0esr-109.31 is installed OR MozillaFirefox-translations-52.8.0esr-109.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-45.2.0esr-75 is installed OR MozillaFirefox-branding-SLE-45.0-28 is installed OR MozillaFirefox-translations-45.2.0esr-75 is installed OR libfreebl3-3.21.1-46 is installed OR libfreebl3-32bit-3.21.1-46 is installed OR libfreebl3-hmac-3.21.1-46 is installed OR libfreebl3-hmac-32bit-3.21.1-46 is installed OR libsoftokn3-3.21.1-46 is installed OR libsoftokn3-32bit-3.21.1-46 is installed OR libsoftokn3-hmac-3.21.1-46 is installed OR libsoftokn3-hmac-32bit-3.21.1-46 is installed OR mozilla-nspr-4.12-15 is installed OR mozilla-nspr-32bit-4.12-15 is installed OR mozilla-nss-3.21.1-46 is installed OR mozilla-nss-32bit-3.21.1-46 is installed OR mozilla-nss-certs-3.21.1-46 is installed OR mozilla-nss-certs-32bit-3.21.1-46 is installed OR mozilla-nss-sysinit-3.21.1-46 is installed OR mozilla-nss-sysinit-32bit-3.21.1-46 is installed OR mozilla-nss-tools-3.21.1-46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-6-4 is installed OR kgraft-patch-3_12_69-60_64_35-xen-6-4 is installed OR kgraft-patch-SLE12-SP1_Update_14-6-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND hardlink-1.0-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information guestfs-data-1.32.4-19 is installed OR guestfs-tools-1.32.4-19 is installed OR guestfsd-1.32.4-19 is installed OR libguestfs0-1.32.4-19 is installed OR perl-Sys-Guestfs-1.32.4-19 is installed OR python-libguestfs-1.32.4-19 is installed OR virt-p2v-1.32.4-19 is installed OR virt-v2v-1.32.4-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mutt-1.10.1-55.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information perl-Mail-SpamAssassin-3.4.2-44.8 is installed OR spamassassin-3.4.2-44.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libical1-1.0.1-16.3 is installed OR libical1-32bit-1.0.1-16.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libvirt-2.0.0-27.61 is installed OR libvirt-client-2.0.0-27.61 is installed OR libvirt-daemon-2.0.0-27.61 is installed OR libvirt-daemon-config-network-2.0.0-27.61 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.61 is installed OR libvirt-daemon-driver-interface-2.0.0-27.61 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.61 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.61 is installed OR libvirt-daemon-driver-network-2.0.0-27.61 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.61 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.61 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.61 is installed OR libvirt-daemon-driver-secret-2.0.0-27.61 is installed OR libvirt-daemon-driver-storage-2.0.0-27.61 is installed OR libvirt-daemon-hooks-2.0.0-27.61 is installed OR libvirt-daemon-lxc-2.0.0-27.61 is installed OR libvirt-daemon-qemu-2.0.0-27.61 is installed OR libvirt-daemon-xen-2.0.0-27.61 is installed OR libvirt-doc-2.0.0-27.61 is installed OR libvirt-lock-sanlock-2.0.0-27.61 is installed OR libvirt-nss-2.0.0-27.61 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.23-3.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1587034359.a12678b-3.19 is installed OR ardana-barbican-9.0+git.1583953599.cd723bb-3.10 is installed OR ardana-cluster-9.0+git.1585653734.c1fe3b2-3.13 is installed OR ardana-db-9.0+git.1586543314.6b6aa20-3.19 is installed OR ardana-designate-9.0+git.1583445435.4bd1793-3.10 is installed OR ardana-input-model-9.0+git.1584632190.9541c56-3.16 is installed OR ardana-logging-9.0+git.1585929695.f35b591-3.10 is installed OR ardana-monasca-9.0+git.1586769889.d43d736-3.16 is installed OR ardana-mq-9.0+git.1586350749.a463fd2-3.13 is installed OR ardana-neutron-9.0+git.1587667603.507fb50-3.19 is installed OR ardana-octavia-9.0+git.1587486004.8e99c6b-3.16 is installed OR ardana-osconfig-9.0+git.1586546715.dbd07ab-3.16 is installed OR ardana-tempest-9.0+git.1587398456.b31cc4a-3.13 is installed OR ardana-tls-9.0+git.1586301209.c9413b4-3.12 is installed OR memcached-1.5.17-3.3 is installed OR openstack-ceilometer-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-central-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-compute-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-ipmi-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-notification-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-polling-11.1.1~dev5-3.13 is installed OR openstack-cinder-13.0.10~dev9-3.19 is installed OR openstack-cinder-api-13.0.10~dev9-3.19 is installed OR openstack-cinder-backup-13.0.10~dev9-3.19 is installed OR openstack-cinder-scheduler-13.0.10~dev9-3.19 is installed OR openstack-cinder-volume-13.0.10~dev9-3.19 is installed OR openstack-designate-7.0.1~dev25-3.16 is installed OR openstack-designate-agent-7.0.1~dev25-3.16 is installed OR openstack-designate-api-7.0.1~dev25-3.16 is installed OR openstack-designate-central-7.0.1~dev25-3.16 is installed OR openstack-designate-producer-7.0.1~dev25-3.16 is installed OR openstack-designate-sink-7.0.1~dev25-3.16 is installed OR openstack-designate-worker-7.0.1~dev25-3.16 is installed OR openstack-heat-11.0.3~dev35-3.16 is installed OR openstack-heat-api-11.0.3~dev35-3.16 is installed OR openstack-heat-api-cfn-11.0.3~dev35-3.16 is installed OR openstack-heat-engine-11.0.3~dev35-3.16 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev35-3.16 is installed OR openstack-ironic-11.1.5~dev3-3.16 is installed OR openstack-ironic-api-11.1.5~dev3-3.16 is installed OR openstack-ironic-conductor-11.1.5~dev3-3.16 is installed OR openstack-ironic-image-9.0.0-3.6 is installed OR openstack-ironic-image-x86_64-9.0.0-3.6 is installed OR openstack-manila-7.4.2~dev4-4.21 is installed OR openstack-manila-api-7.4.2~dev4-4.21 is installed OR openstack-manila-data-7.4.2~dev4-4.21 is installed OR openstack-manila-scheduler-7.4.2~dev4-4.21 is installed OR openstack-manila-share-7.4.2~dev4-4.21 is installed OR openstack-neutron-13.0.8~dev28-3.22 is installed OR openstack-neutron-dhcp-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-ha-tool-13.0.8~dev28-3.22 is installed OR openstack-neutron-l3-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-linuxbridge-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-macvtap-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metadata-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metering-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-openvswitch-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-server-13.0.8~dev28-3.22 is installed OR openstack-nova-18.3.1~dev17-3.22 is installed OR openstack-nova-api-18.3.1~dev17-3.22 is installed OR openstack-nova-cells-18.3.1~dev17-3.22 is installed OR openstack-nova-compute-18.3.1~dev17-3.22 is installed OR openstack-nova-conductor-18.3.1~dev17-3.22 is installed OR openstack-nova-console-18.3.1~dev17-3.22 is installed OR openstack-nova-novncproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-placement-api-18.3.1~dev17-3.22 is installed OR openstack-nova-scheduler-18.3.1~dev17-3.22 is installed OR openstack-nova-serialproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-vncproxy-18.3.1~dev17-3.22 is installed OR openstack-octavia-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-agent-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-image-0.1.3-7.9 is installed OR openstack-octavia-amphora-image-x86_64-0.1.3-7.9 is installed OR openstack-octavia-api-3.2.3~dev2-3.22 is installed OR openstack-octavia-health-manager-3.2.3~dev2-3.22 is installed OR openstack-octavia-housekeeping-3.2.3~dev2-3.22 is installed OR openstack-octavia-worker-3.2.3~dev2-3.22 is installed OR python-ceilometer-11.1.1~dev5-3.13 is installed OR python-cinder-13.0.10~dev9-3.19 is installed OR python-cinderclient-4.0.3-3.6 is installed OR python-cinderclient-doc-4.0.3-3.6 is installed OR python-designate-7.0.1~dev25-3.16 is installed OR python-glanceclient-2.13.2-3.3 is installed OR python-glanceclient-doc-2.13.2-3.3 is installed OR python-heat-11.0.3~dev35-3.16 is installed OR python-ironic-11.1.5~dev3-3.16 is installed OR python-ironic-lib-2.14.3-3.6 is installed OR python-ironicclient-2.5.4-4.10 is installed OR python-ironicclient-doc-2.5.4-4.10 is installed OR python-keystonemiddleware-5.2.2-17 is installed OR python-manila-7.4.2~dev4-4.21 is installed OR python-manila-tempest-plugin-0.1.0-3.6 is installed OR python-neutron-13.0.8~dev28-3.22 is installed OR python-nova-18.3.1~dev17-3.22 is installed OR python-novaclient-11.0.1-3.3 is installed OR python-novaclient-doc-11.0.1-3.3 is installed OR python-octavia-3.2.3~dev2-3.22 is installed OR python-octaviaclient-1.6.2-3.6 is installed OR python-openstackclient-3.16.3-11 is installed OR python-os-brick-2.5.10-3.9 is installed OR python-os-brick-common-2.5.10-3.9 is installed OR python-oslo.config-6.4.2-3.3 is installed OR python-oslo.config-doc-6.4.2-3.3 is installed OR python-oslo.rootwrap-5.14.2-3.3 is installed OR python-oslo.utils-3.36.5-3.3 is installed OR python-swiftclient-3.6.1-3.3 is installed OR python-swiftclient-doc-3.6.1-3.3 is installed OR python-watcherclient-2.1.1-3.3 is installed OR release-notes-suse-openstack-cloud-9.20200319-3.18 is installed OR venv-openstack-barbican-7.0.1~dev24-3.17 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev24-3.17 is installed OR venv-openstack-cinder-13.0.10~dev9-3.17 is installed OR venv-openstack-cinder-x86_64-13.0.10~dev9-3.17 is installed OR venv-openstack-designate-7.0.1~dev25-3.17 is installed OR venv-openstack-designate-x86_64-7.0.1~dev25-3.17 is installed OR venv-openstack-glance-17.0.1~dev30-3.15 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.15 is installed OR venv-openstack-heat-11.0.3~dev35-3.17 is installed OR venv-openstack-heat-x86_64-11.0.3~dev35-3.17 is installed OR venv-openstack-horizon-14.1.1~dev1-4.16 is installed OR venv-openstack-horizon-x86_64-14.1.1~dev1-4.16 is installed OR venv-openstack-ironic-11.1.5~dev3-4.13 is installed OR venv-openstack-ironic-x86_64-11.1.5~dev3-4.13 is installed OR venv-openstack-keystone-14.1.1~dev36-3.17 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev36-3.17 is installed OR venv-openstack-magnum-7.2.1~dev1-4.17 is installed OR venv-openstack-magnum-x86_64-7.2.1~dev1-4.17 is installed OR venv-openstack-manila-7.4.2~dev4-3.19 is installed OR venv-openstack-manila-x86_64-7.4.2~dev4-3.19 is installed OR venv-openstack-monasca-2.7.1~dev10-3.15 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.17 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.17 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.15 is installed OR venv-openstack-neutron-13.0.8~dev28-6.17 is installed OR venv-openstack-neutron-x86_64-13.0.8~dev28-6.17 is installed OR venv-openstack-nova-18.3.1~dev17-3.17 is installed OR venv-openstack-nova-x86_64-18.3.1~dev17-3.17 is installed OR venv-openstack-octavia-3.2.3~dev2-4.17 is installed OR venv-openstack-octavia-x86_64-3.2.3~dev2-4.17 is installed OR venv-openstack-sahara-9.0.2~dev15-3.17 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev15-3.17 is installed OR venv-openstack-swift-2.19.2~dev48-2.12 is installed OR venv-openstack-swift-x86_64-2.19.2~dev48-2.12 is installed OR zookeeper-3.4.13-3.3 is installed OR zookeeper-server-3.4.13-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_0-openjdk-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-demo-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-devel-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-headless-1.7.0.251-43.35 is installed

BACK