Oval Definition:oval:org.opensuse.security:def:57143
Revision Date:2021-12-12Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:unixClass:patch
Status:Reference(s):1017646
1037384
1038231
1038709
1038711
1038713
1039348
1056088
1056090
1056093
1056095
1056097
1056101
1056105
1064232
1073748
1076110
1083635
1085042
1086652
1087081
1089343
1090123
1090338
1091171
1094248
1096130
1096480
1096740
1096978
1097140
1097551
1098016
1098425
1098435
1099924
1100089
1100416
1100418
1100491
1101557
1102340
1102851
1103097
1103119
1103580
1104668
1109847
1111331
1116574
1117632
1122191
1123361
1123522
1135273
1160398
1169511
1193321
1193485
795826
958791
995374
CVE-2009-0945
CVE-2011-3193
CVE-2011-3922
CVE-2012-4929
CVE-2012-5668
CVE-2012-5669
CVE-2012-6093
CVE-2013-0254
CVE-2013-4549
CVE-2014-0190
CVE-2015-0295
CVE-2015-1858
CVE-2015-1859
CVE-2015-1860
CVE-2015-8540
CVE-2016-10087
CVE-2016-6329
CVE-2017-1000364
CVE-2017-13738
CVE-2017-13739
CVE-2017-13740
CVE-2017-13741
CVE-2017-13743
CVE-2017-13744
CVE-2017-18344
CVE-2017-7478
CVE-2017-7479
CVE-2017-7494
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12539
CVE-2018-13053
CVE-2018-13405
CVE-2018-13406
CVE-2018-13785
CVE-2018-14647
CVE-2018-14734
CVE-2018-1517
CVE-2018-16476
CVE-2018-1656
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2018-3620
CVE-2018-3646
CVE-2018-3665
CVE-2018-5390
CVE-2018-5391
CVE-2018-5814
CVE-2018-9385
CVE-2019-11091
CVE-2019-5010
CVE-2019-6977
CVE-2019-6978
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2021-43536
CVE-2021-43537
CVE-2021-43538
CVE-2021-43539
CVE-2021-43541
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
SUSE-SU-2017:0950-1
SUSE-SU-2017:1392-1
SUSE-SU-2017:1617-1
SUSE-SU-2017:1622-1
SUSE-SU-2017:2570-1
SUSE-SU-2018:2087-1
SUSE-SU-2018:2344-1
SUSE-SU-2018:2649-1
SUSE-SU-2018:4064-1
SUSE-SU-2019:0152-1
SUSE-SU-2019:0482-1
SUSE-SU-2019:0747-1
SUSE-SU-2019:1452-1
SUSE-SU-2020:1686-1
SUSE-SU-2021:4000-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • MozillaFirefox-60.0-lp150.2 is installed
  • OR MozillaFirefox-translations-common-60.0-lp150.2 is installed
  • OR MozillaFirefox-translations-other-60.0-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • curl-7.60.0-lp151.5.3 is installed
  • OR curl-mini-7.60.0-lp151.5.3 is installed
  • OR libcurl-devel-7.60.0-lp151.5.3 is installed
  • OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed
  • OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed
  • OR libcurl4-7.60.0-lp151.5.3 is installed
  • OR libcurl4-32bit-7.60.0-lp151.5.3 is installed
  • OR libcurl4-mini-7.60.0-lp151.5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • freetype2-2.3.7-25.32 is installed
  • OR freetype2-32bit-2.3.7-25.32 is installed
  • OR freetype2-devel-2.3.7-25.32 is installed
  • OR ft2demos-2.3.7-25.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gd-2.1.0-24.12 is installed
  • OR gd-32bit-2.1.0-24.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpng15-1.5.22-9 is installed
  • OR libpng15-15-1.5.22-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_93-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_93-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_28-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libqt4-4.8.6-7 is installed
  • OR libqt4-32bit-4.8.6-7 is installed
  • OR libqt4-qt3support-4.8.6-7 is installed
  • OR libqt4-qt3support-32bit-4.8.6-7 is installed
  • OR libqt4-sql-4.8.6-7 is installed
  • OR libqt4-sql-32bit-4.8.6-7 is installed
  • OR libqt4-sql-mysql-4.8.6-7 is installed
  • OR libqt4-sql-sqlite-4.8.6-7 is installed
  • OR libqt4-x11-4.8.6-7 is installed
  • OR libqt4-x11-32bit-4.8.6-7 is installed
  • OR qt4-x11-tools-4.8.6-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.6_02-43.36 is installed
  • OR xen-doc-html-4.7.6_02-43.36 is installed
  • OR xen-libs-4.7.6_02-43.36 is installed
  • OR xen-libs-32bit-4.7.6_02-43.36 is installed
  • OR xen-tools-4.7.6_02-43.36 is installed
  • OR xen-tools-domU-4.7.6_02-43.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_59-92_24-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_9-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • cups-1.7.5-20.29 is installed
  • OR cups-client-1.7.5-20.29 is installed
  • OR cups-libs-1.7.5-20.29 is installed
  • OR cups-libs-32bit-1.7.5-20.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-91.4.0-112.83.1 is installed
  • OR MozillaFirefox-devel-91.4.0-112.83.1 is installed
  • OR MozillaFirefox-translations-common-91.4.0-112.83.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND perl-Archive-Zip-1.34-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.123 is installed
  • OR ImageMagick-config-6-SUSE-6.8.8.1-71.123 is installed
  • OR ImageMagick-config-6-upstream-6.8.8.1-71.123 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.123 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.123 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-default-man-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libexif-0.6.22-8.9 is installed
  • OR libexif12-0.6.22-8.9 is installed
  • OR libexif12-32bit-0.6.22-8.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed
  • OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed
  • OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed
  • OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed
    • BACK