Oval Definition:	oval:org.opensuse.security:def:57336
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox, mozilla-nspr (Important) Description: Mozilla Firefox was updated to version 38.3.0 ESR (bsc#947003), fixing bugs and security issues. MFSA 2015-96/CVE-2015-4500/CVE-2015-4501 Miscellaneous memory safety hazards (rv:41.0 / rv:38.3) * MFSA 2015-101/CVE-2015-4506 Buffer overflow in libvpx while parsing vp9 format video * MFSA 2015-105/CVE-2015-4511 Buffer overflow while decoding WebM video * MFSA 2015-106/CVE-2015-4509 Use-after-free while manipulating HTML media content * MFSA 2015-110/CVE-2015-4519 Dragging and dropping images exposes final URL after redirects * MFSA 2015-111/CVE-2015-4520 Errors in the handling of CORS preflight request headers * MFSA 2015-112/CVE-2015-4517/CVE-2015-4521/CVE-2015-4522 CVE-2015-7174/CVE-2015-7175/CVE-2015-7176/CVE-2015-7177 CVE-2015-7180 Vulnerabilities found through code inspection More details can be found on https://www.mozilla.org/en-US/security/advisories/ The Mozilla NSPR library was updated to version 4.10.9, fixing various bugs. Family: unix Class: patch Status: Reference(s): 1012382 1022805 1042286 1062604 1064232 1065364 1075608 1077724 1077725 1077978 1082519 1082863 1084536 1085042 1088810 1089066 1091396 1092903 1094466 1095344 1096547 1096745 1097104 1099597 1099811 1099813 1099844 1099845 1099846 1099849 1099863 1099864 1099922 1099993 1099999 1100000 1100001 1100152 1102517 1102715 1102870 1103445 1104319 1104495 1105010 1105292 1105296 1105322 1105348 1105396 1105536 1106016 1106095 1106369 1106509 1106511 1106512 1106594 1107689 1107735 1107966 1108239 1108399 1109333 1116574 1119947 1132728 1132729 1132732 1132734 1134718 1140747 1144504 1149458 1151839 1164692 1173144 907074 947003 964336 984650 CVE-2014-9087 CVE-2015-4500 CVE-2015-4501 CVE-2015-4506 CVE-2015-4509 CVE-2015-4511 CVE-2015-4517 CVE-2015-4519 CVE-2015-4520 CVE-2015-4521 CVE-2015-4522 CVE-2015-7174 CVE-2015-7175 CVE-2015-7176 CVE-2015-7177 CVE-2015-7180 CVE-2016-1372 CVE-2016-2399 CVE-2016-5759 CVE-2017-15132 CVE-2017-17969 CVE-2018-10853 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-10902 CVE-2018-10938 CVE-2018-10940 CVE-2018-12020 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-13785 CVE-2018-14617 CVE-2018-14678 CVE-2018-15473 CVE-2018-15572 CVE-2018-15594 CVE-2018-16276 CVE-2018-16658 CVE-2018-16884 CVE-2018-17182 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2018-5996 CVE-2018-6554 CVE-2018-6555 CVE-2018-7480 CVE-2018-7757 CVE-2018-9363 CVE-2019-10245 CVE-2019-11478 CVE-2019-12625 CVE-2019-12900 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2020-1938 CVE-2020-8163 SUSE-SU-2017:1986-1 SUSE-SU-2018:0464-1 SUSE-SU-2018:0466-1 SUSE-SU-2018:1698-1 SUSE-SU-2018:3084-1 SUSE-SU-2018:3910-1 SUSE-SU-2018:4064-1 SUSE-SU-2019:1345-1 SUSE-SU-2019:1935-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:0806-1 SUSE-SU-2020:2140-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information emacs-25.3-lp150.1 is installed OR emacs-info-25.3-lp150.1 is installed OR emacs-nox-25.3-lp150.1 is installed OR etags-25.3-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libmariadb-devel-3.1.2-lp151.3.3 is installed OR libmariadb3-3.1.2-lp151.3.3 is installed OR libmariadb3-32bit-3.1.2-lp151.3.3 is installed OR libmariadb_plugins-3.1.2-lp151.3.3 is installed OR libmariadbprivate-3.1.2-lp151.3.3 is installed OR libmysqld-devel-10.2.25-lp151.2.3 is installed OR libmysqld19-10.2.25-lp151.2.3 is installed OR mariadb-10.2.25-lp151.2.3 is installed OR mariadb-bench-10.2.25-lp151.2.3 is installed OR mariadb-client-10.2.25-lp151.2.3 is installed OR mariadb-connector-c-3.1.2-lp151.3.3 is installed OR mariadb-errormessages-10.2.25-lp151.2.3 is installed OR mariadb-galera-10.2.25-lp151.2.3 is installed OR mariadb-test-10.2.25-lp151.2.3 is installed OR mariadb-tools-10.2.25-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information mozilla-nspr-4.10.9-11 is installed OR mozilla-nspr-32bit-4.10.9-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND kdump-0.8.15-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.27 is installed OR apache2-doc-2.4.23-29.27 is installed OR apache2-example-pages-2.4.23-29.27 is installed OR apache2-prefork-2.4.23-29.27 is installed OR apache2-utils-2.4.23-29.27 is installed OR apache2-worker-2.4.23-29.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information git-2.26.2-27.36 is installed OR git-core-2.26.2-27.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20191112a-13.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjavascriptcoregtk-4_0-18-2.20.3-2.23 is installed OR libwebkit2gtk-4_0-37-2.20.3-2.23 is installed OR typelib-1_0-JavaScriptCore-4_0-2.20.3-2.23 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-2.23 is installed OR webkit2gtk-4_0-injected-bundles-2.20.3-2.23 is installed OR webkit2gtk3-2.20.3-2.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR libwebkit2gtk3-lang-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.16.0-11.21 is installed
BACK