Oval Definition:	oval:org.opensuse.security:def:57339
Revision Date: 2020-12-01 Version: 1 Title: Security update for Mozilla Firefox Description: MozillaFirefox has been updated to the 24.2.0 ESR security release. This is a major upgrade from the 17 ESR release branch. Security issues fixed: * CVE-2013-5611 Application Installation doorhanger persists on navigation (MFSA 2013-105) * CVE-2013-5609 Miscellaneous memory safety hazards (rv:24.2) (MFSA 2013-104) * CVE-2013-5610 Miscellaneous memory safety hazards (rv:26.0) (MFSA 2013-104) * CVE-2013-5612 Character encoding cross-origin XSS attack (MFSA 2013-106) * CVE-2013-5614 Sandbox restrictions not applied to nested object elements (MFSA 2013-107) * CVE-2013-5616 Use-after-free in event listeners (MFSA 2013-108) * CVE-2013-5619 Potential overflow in JavaScript binary search algorithms (MFSA 2013-110) * CVE-2013-6671 Segmentation violation when replacing ordered list elements (MFSA 2013-111) * CVE-2013-6673 Trust settings for built-in roots ignored during EV certificate validation (MFSA 2013-113) * CVE-2013-5613 Use-after-free in synthetic mouse movement (MFSA 2013-114) * CVE-2013-5615 GetElementIC typed array stubs can be generated outside observed typesets (MFSA 2013-115) * CVE-2013-6672 Linux clipboard information disclosure though selection paste (MFSA 2013-112) * CVE-2013-5618 Use-after-free during Table Editing (MFSA 2013-109) Security Issue references: * CVE-2013-5609 * CVE-2013-5610 * CVE-2013-5611 * CVE-2013-5612 * CVE-2013-5613 * CVE-2013-5614 * CVE-2013-5615 * CVE-2013-5616 * CVE-2013-5618 * CVE-2013-5619 * CVE-2013-6671 * CVE-2013-6672 * CVE-2013-6673 Family: unix Class: patch Status: Reference(s): 1028103 1035807 1036457 1041783 1042802 1042803 1043088 1043886 1045719 1045721 1077983 1079600 1083424 1085449 1093311 1098531 1104301 1111853 1118319 1118320 1123823 1123828 1123832 1135170 1139083 1159913 1165631 1174628 854367 854370 911812 CVE-2011-1526 CVE-2011-4862 CVE-2013-5609 CVE-2013-5610 CVE-2013-5611 CVE-2013-5612 CVE-2013-5613 CVE-2013-5614 CVE-2013-5615 CVE-2013-5616 CVE-2013-5618 CVE-2013-5619 CVE-2013-6671 CVE-2013-6672 CVE-2013-6673 CVE-2014-9474 CVE-2016-10244 CVE-2017-7511 CVE-2017-7515 CVE-2017-7864 CVE-2017-8105 CVE-2017-8287 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-1053 CVE-2018-12327 CVE-2018-1417 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2825 CVE-2018-2826 CVE-2018-5383 CVE-2018-7170 CVE-2018-9568 CVE-2019-12900 CVE-2019-5108 CVE-2019-5436 CVE-2020-14344 CVE-2020-1749 SUSE-SU-2017:1999-1 SUSE-SU-2018:0414-1 SUSE-SU-2018:0507-1 SUSE-SU-2018:0510-1 SUSE-SU-2018:1738-1 SUSE-SU-2018:3342-1 SUSE-SU-2018:4158-1 SUSE-SU-2019:0313-1 SUSE-SU-2019:0427-1 SUSE-SU-2019:1363-1 SUSE-SU-2019:2013-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:2196-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information evince-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-lang-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp150.2 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp150.2 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-lp150.2 is installed OR libevview3-3-3.26.0+20180128.1bd86963-lp150.2 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-lp150.2 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp150.2 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gpg2-2.2.5-lp151.6.3 is installed OR gpg2-lang-2.2.5-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.2.0esr-0.7 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.2.0esr-0.7 is installed OR libfreebl3-3.15.3.1-0.7 is installed OR libfreebl3-32bit-3.15.3.1-0.7 is installed OR libsoftokn3-3.15.3.1-0.7 is installed OR libsoftokn3-32bit-3.15.3.1-0.7 is installed OR mozilla-nss-3.15.3.1-0.7 is installed OR mozilla-nss-32bit-3.15.3.1-0.7 is installed OR mozilla-nss-tools-3.15.3.1-0.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_99-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_99-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_30-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information krb5-appl-clients-1.0.3-1 is installed OR krb5-appl-servers-1.0.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython2_7-1_0-2.7.17-28.42 is installed OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed OR python-2.7.17-28.42 is installed OR python-32bit-2.7.17-28.42 is installed OR python-base-2.7.17-28.42 is installed OR python-base-32bit-2.7.17-28.42 is installed OR python-curses-2.7.17-28.42 is installed OR python-demo-2.7.17-28.42 is installed OR python-devel-2.7.17-28.42 is installed OR python-doc-2.7.17-28.42 is installed OR python-doc-pdf-2.7.17-28.42 is installed OR python-gdbm-2.7.17-28.42 is installed OR python-idle-2.7.17-28.42 is installed OR python-rpm-macros-20200207.5feb6c1-3.19 is installed OR python-tk-2.7.17-28.42 is installed OR python-xml-2.7.17-28.42 is installed OR shared-python-startup-0.1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsnmp30-5.7.3-6.3 is installed OR libsnmp30-32bit-5.7.3-6.3 is installed OR net-snmp-5.7.3-6.3 is installed OR perl-SNMP-5.7.3-6.3 is installed OR snmp-mibs-5.7.3-6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.24 is installed
BACK