Oval Definition:	oval:org.opensuse.security:def:57294
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important) Description: MozillaFirefox, mozilla-nspr and mozilla-nss were updated to fix 17 security issues. For more details please check the changelogs. These security issues were fixed: - CVE-2015-2724/CVE-2015-2725/CVE-2015-2726: Miscellaneous memory safety hazards (bsc#935979). - CVE-2015-2728: Type confusion in Indexed Database Manager (bsc#935979). - CVE-2015-2730: ECDSA signature validation fails to handle some signatures correctly (bsc#935979). - CVE-2015-2722/CVE-2015-2733: Use-after-free in workers while using XMLHttpRequest (bsc#935979). - CVE-2015-2734/CVE-2015-2735/CVE-2015-2736/CVE-2015-2737/CVE-2015-2738/CVE-2015-2739/CVE-2015-2740: Vulnerabilities found through code inspection (bsc#935979). - CVE-2015-2743: Privilege escalation in PDF.js (bsc#935979). - CVE-2015-4000: NSS accepts export-length DHE keys with regular DHE cipher suites (bsc#935033). - CVE-2015-2721: NSS incorrectly permits skipping of ServerKeyExchange (bsc#935979). This non-security issue was fixed: - bsc#908275: Firefox did not print in landscape orientation. Family: unix Class: patch Status: Reference(s): 1001203 1002981 1009085 1010735 1010740 1010752 1010754 1010911 1014437 1014441 1014442 1021739 1025913 1026507 1027692 1027998 1033936 1033937 1033938 1033939 1033940 1033941 1033942 1033943 1033944 1033945 1045640 1076017 1076033 1083488 1085114 1085447 1096449 1106923 1107256 1107832 1108308 1108835 1109252 1110233 1110445 1111278 1112024 1112852 1113083 1113632 1113665 1121571 1121816 1121818 1121821 1123161 1130972 1134399 1139358 1140012 1140652 1140903 1140945 1141401 1141402 1141452 1141453 1141454 1141628 1142023 1142098 1142857 1143045 1143048 1143189 1143191 1144257 1144273 1144288 1144920 1145920 1145922 1146163 1151021 1168404 1168407 1169066 1171252 1171254 884828 884830 908275 935033 935979 946148 952539 954592 956631 975299 986675 990856 991564 994500 997833 998761 998762 998763 998800 998963 998964 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2015-2721 CVE-2015-2722 CVE-2015-2724 CVE-2015-2725 CVE-2015-2726 CVE-2015-2728 CVE-2015-2730 CVE-2015-2733 CVE-2015-2734 CVE-2015-2735 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 CVE-2015-2740 CVE-2015-2743 CVE-2015-4000 CVE-2015-8370 CVE-2016-2123 CVE-2016-2125 CVE-2016-2126 CVE-2016-6354 CVE-2016-7175 CVE-2016-7176 CVE-2016-7177 CVE-2016-7178 CVE-2016-7179 CVE-2016-7180 CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 CVE-2017-13166 CVE-2017-18551 CVE-2017-5596 CVE-2017-5597 CVE-2017-6014 CVE-2017-7700 CVE-2017-7701 CVE-2017-7702 CVE-2017-7703 CVE-2017-7704 CVE-2017-7705 CVE-2017-7745 CVE-2017-7746 CVE-2017-7747 CVE-2017-7748 CVE-2018-1000004 CVE-2018-1068 CVE-2018-12389 CVE-2018-12390 CVE-2018-12392 CVE-2018-12393 CVE-2018-12395 CVE-2018-12396 CVE-2018-12397 CVE-2018-14633 CVE-2018-15686 CVE-2018-15688 CVE-2018-17182 CVE-2018-20685 CVE-2018-20855 CVE-2018-20856 CVE-2018-6126 CVE-2018-7566 CVE-2019-10207 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631 CVE-2019-14283 CVE-2019-14284 CVE-2019-14835 CVE-2019-15117 CVE-2019-15118 CVE-2019-3819 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-12653 CVE-2020-12654 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 SUSE-SU-2015:1268-2 SUSE-SU-2015:2386-1 SUSE-SU-2016:3272-1 SUSE-SU-2017:1442-1 SUSE-SU-2018:1034-1 SUSE-SU-2018:1783-1 SUSE-SU-2018:3074-1 SUSE-SU-2018:3749-1 SUSE-SU-2018:3767-1 SUSE-SU-2019:0125-1 SUSE-SU-2019:2299-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:1475-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND icedtea-web-1.7.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-Twisted-17.9.0-lp151.3.3 is installed OR python-Twisted-doc-17.9.0-lp151.3.3 is installed OR python2-Twisted-17.9.0-lp151.3.3 is installed OR python3-Twisted-17.9.0-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10 is installed OR MozillaFirefox-translations-31.8.0esr-0.10 is installed OR libfreebl3-3.19.2_CKBI_1.98-0.10 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10 is installed OR libsoftokn3-3.19.2_CKBI_1.98-0.10 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nspr-4.10.8-0.5 is installed OR mozilla-nspr-32bit-4.10.8-0.5 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND davfs2-1.5.2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpython3_4m1_0-3.4.6-25.16 is installed OR python3-3.4.6-25.16 is installed OR python3-base-3.4.6-25.16 is installed OR python3-curses-3.4.6-25.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-3.8 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-3.8 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.8 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-3.8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ardana-ansible-8.0+git.1560208949.67048e3-3.64 is installed OR ardana-db-8.0+git.1564410318.f0cca2c-3.28 is installed OR ardana-freezer-8.0+git.1564164977.ef9baeb-3.18 is installed OR ardana-glance-8.0+git.1564491709.349d78e-3.14 is installed OR ardana-input-model-8.0+git.1562848601.c3daff0-3.30 is installed OR ardana-nova-8.0+git.1565388406.c6abb8d-3.32 is installed OR ardana-osconfig-8.0+git.1563383198.c7fd9b4-3.39 is installed OR ardana-swiftlm-drive-provision-8.0+git.1541434883.e0ebe69-5.9 is installed OR ardana-swiftlm-log-tailer-8.0+git.1541434883.e0ebe69-5.9 is installed OR ardana-swiftlm-uptime-mon-8.0+git.1541434883.e0ebe69-5.9 is installed OR ardana-tempest-8.0+git.1562849010.73bc517-3.24 is installed OR caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-4.15 is installed OR documentation-suse-openstack-cloud-installation-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-operations-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-opsconsole-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-planning-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-security-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-supplement-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-user-8.20190805-1.20 is installed OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-4.6 is installed OR grafana-monasca-ui-drilldown-1.8.1~dev39-3.9 is installed OR openstack-cinder-11.2.3~dev7-3.18 is installed OR openstack-cinder-api-11.2.3~dev7-3.18 is installed OR openstack-cinder-backup-11.2.3~dev7-3.18 is installed OR openstack-cinder-doc-11.2.3~dev7-3.18 is installed OR openstack-cinder-scheduler-11.2.3~dev7-3.18 is installed OR openstack-cinder-volume-11.2.3~dev7-3.18 is installed OR openstack-glance-15.0.3~dev2-3.9 is installed OR openstack-glance-api-15.0.3~dev2-3.9 is installed OR openstack-glance-doc-15.0.3~dev2-3.9 is installed OR openstack-glance-registry-15.0.3~dev2-3.9 is installed OR openstack-heat-9.0.8~dev11-3.21 is installed OR openstack-heat-api-9.0.8~dev11-3.21 is installed OR openstack-heat-api-cfn-9.0.8~dev11-3.21 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev11-3.21 is installed OR openstack-heat-doc-9.0.8~dev11-3.21 is installed OR openstack-heat-engine-9.0.8~dev11-3.21 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev11-3.21 is installed OR openstack-heat-test-9.0.8~dev11-3.21 is installed OR openstack-horizon-plugin-monasca-ui-1.8.1~dev39-3.9 is installed OR openstack-horizon-plugin-neutron-fwaas-ui-1.0.1~dev9-4.6 is installed OR openstack-ironic-9.1.8~dev7-3.21 is installed OR openstack-ironic-api-9.1.8~dev7-3.21 is installed OR openstack-ironic-conductor-9.1.8~dev7-3.21 is installed OR openstack-ironic-doc-9.1.8~dev7-3.21 is installed OR openstack-keystone-12.0.4~dev2-5.22 is installed OR openstack-keystone-doc-12.0.4~dev2-5.22 is installed OR openstack-manila-5.1.1~dev2-3.18 is installed OR openstack-manila-api-5.1.1~dev2-3.18 is installed OR openstack-manila-data-5.1.1~dev2-3.18 is installed OR openstack-manila-doc-5.1.1~dev2-3.18 is installed OR openstack-manila-scheduler-5.1.1~dev2-3.18 is installed OR openstack-manila-share-5.1.1~dev2-3.18 is installed OR openstack-monasca-agent-2.2.5~dev5-3.12 is installed OR openstack-monasca-api-2.2.2~dev1-3.15 is installed OR openstack-monasca-persister-1.7.1~dev10-3.9 is installed OR openstack-monasca-persister-java-1.7.1~a0~dev2-3.3 is installed OR openstack-murano-4.0.2~dev2-3.9 is installed OR openstack-murano-api-4.0.2~dev2-3.9 is installed OR openstack-murano-doc-4.0.2~dev2-3.9 is installed OR openstack-murano-engine-4.0.2~dev2-3.9 is installed OR openstack-neutron-11.0.9~dev42-3.21 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-doc-11.0.9~dev42-3.21 is installed OR openstack-neutron-gbp-7.3.1~dev45-3.6 is installed OR openstack-neutron-ha-tool-11.0.9~dev42-3.21 is installed OR openstack-neutron-l3-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.12 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.12 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.12 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-metadata-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-metering-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-server-11.0.9~dev42-3.21 is installed OR openstack-nova-16.1.9~dev4-3.26 is installed OR openstack-nova-api-16.1.9~dev4-3.26 is installed OR openstack-nova-cells-16.1.9~dev4-3.26 is installed OR openstack-nova-compute-16.1.9~dev4-3.26 is installed OR openstack-nova-conductor-16.1.9~dev4-3.26 is installed OR openstack-nova-console-16.1.9~dev4-3.26 is installed OR openstack-nova-consoleauth-16.1.9~dev4-3.26 is installed OR openstack-nova-doc-16.1.9~dev4-3.26 is installed OR openstack-nova-novncproxy-16.1.9~dev4-3.26 is installed OR openstack-nova-placement-api-16.1.9~dev4-3.26 is installed OR openstack-nova-scheduler-16.1.9~dev4-3.26 is installed OR openstack-nova-serialproxy-16.1.9~dev4-3.26 is installed OR openstack-nova-vncproxy-16.1.9~dev4-3.26 is installed OR openstack-octavia-1.0.6~dev2-4.18 is installed OR openstack-octavia-amphora-agent-1.0.6~dev2-4.18 is installed OR openstack-octavia-api-1.0.6~dev2-4.18 is installed OR openstack-octavia-health-manager-1.0.6~dev2-4.18 is installed OR openstack-octavia-housekeeping-1.0.6~dev2-4.18 is installed OR openstack-octavia-worker-1.0.6~dev2-4.18 is installed OR python-Beaver-8.0+git.1502900605.3e0068a-4.3 is installed OR python-cinder-11.2.3~dev7-3.18 is installed OR python-glance-15.0.3~dev2-3.9 is installed OR python-heat-9.0.8~dev11-3.21 is installed OR python-horizon-plugin-monasca-ui-1.8.1~dev39-3.9 is installed OR python-horizon-plugin-neutron-fwaas-ui-1.0.1~dev9-4.6 is installed OR python-ironic-9.1.8~dev7-3.21 is installed OR python-keystone-12.0.4~dev2-5.22 is installed OR python-manila-5.1.1~dev2-3.18 is installed OR python-monasca-agent-2.2.5~dev5-3.12 is installed OR python-monasca-api-2.2.2~dev1-3.15 is installed OR python-monasca-persister-1.7.1~dev10-3.9 is installed OR python-murano-4.0.2~dev2-3.9 is installed OR python-neutron-11.0.9~dev42-3.21 is installed OR python-neutron-gbp-7.3.1~dev45-3.6 is installed OR python-neutron-lbaas-11.0.4~dev6-3.12 is installed OR python-nova-16.1.9~dev4-3.26 is installed OR python-octavia-1.0.6~dev2-4.18 is installed OR python-oslo.db-4.25.2-3.6 is installed OR python-osprofiler-1.11.1-3.3 is installed OR python-swiftlm-8.0+git.1541434883.e0ebe69-5.9 is installed OR venv-openstack-magnum-5.0.2_5.0.2_5.0.2~dev31-11.18 is installed OR venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.18 is installed OR venv-openstack-monasca-2.2.2~dev1-11.16 is installed OR venv-openstack-monasca-ceilometer-1.5.1_1.5.1_1.5.1~dev3-8.14 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.14 is installed OR venv-openstack-monasca-x86_64-2.2.2~dev1-11.16 is installed OR venv-openstack-murano-4.0.2~dev2-12.14 is installed OR venv-openstack-murano-x86_64-4.0.2~dev2-12.14 is installed OR venv-openstack-neutron-11.0.9~dev42-13.22 is installed OR venv-openstack-neutron-x86_64-11.0.9~dev42-13.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
BACK