OVAL Reference oval:org.opensuse.security:def:57433

Oval Definition:

oval:org.opensuse.security:def:57433

Revision Date:	2021-04-27	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox was updated to 78.10.0 ESR (bsc#1184960) * CVE-2021-23994: Out of bound write due to lazy initialization * CVE-2021-23995: Use-after-free in Responsive Design Mode * CVE-2021-23998: Secure Lock icon could have been spoofed * CVE-2021-23961: More internal network hosts could have been probed by a malicious webpage * CVE-2021-23999: Blob URLs may have been granted additional privileges * CVE-2021-24002: Arbitrary FTP command execution on FTP servers using an encoded URL * CVE-2021-29945: Incorrect size computation in WebAssembly JIT could lead to null-reads * CVE-2021-29946: Port blocking could be bypassed
Family:	unix	Class:	patch
Status:		Reference(s):	1000345 1000346 1000396 1001151 1001299 1002116 1002549 1002550 1002557 1003612 1003613 1003878 1003893 1003894 1004702 1004706 1004707 1005353 1005374 1006536 1006538 1007263 1007391 1007493 1007494 1007495 1007769 1008148 1034674 1034678 1056127 1056128 1056129 1056131 1056132 1056136 1067203 1068689 1072193 1077999 1086247 1087932 1103098 1107832 1110233 1124729 1124734 1128378 1137832 1138954 1140868 1144327 1144379 1150584 1152711 1153108 1153471 1155789 1155952 1156334 1157860 1159913 1165631 1173580 1184960 899303 905245 905246 905247 905248 921070 929629 990636 998516 CVE-2004-0801 CVE-2010-4267 CVE-2011-2697 CVE-2011-2722 CVE-2012-2141 CVE-2013-4325 CVE-2013-6402 CVE-2013-6427 CVE-2014-2284 CVE-2014-2285 CVE-2014-3565 CVE-2014-8146 CVE-2014-8147 CVE-2014-8710 CVE-2014-8711 CVE-2014-8712 CVE-2014-8713 CVE-2014-8714 CVE-2015-1782 CVE-2015-5621 CVE-2016-0634 CVE-2016-6293 CVE-2016-7161 CVE-2016-7170 CVE-2016-7422 CVE-2016-7466 CVE-2016-7543 CVE-2016-7907 CVE-2016-7908 CVE-2016-7909 CVE-2016-7994 CVE-2016-7995 CVE-2016-8576 CVE-2016-8577 CVE-2016-8578 CVE-2016-8667 CVE-2016-8668 CVE-2016-8669 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9104 CVE-2016-9105 CVE-2016-9106 CVE-2017-13728 CVE-2017-13729 CVE-2017-13730 CVE-2017-13731 CVE-2017-13732 CVE-2017-13733 CVE-2017-14952 CVE-2017-15422 CVE-2017-16852 CVE-2017-17484 CVE-2017-6967 CVE-2017-7867 CVE-2017-7868 CVE-2018-14633 CVE-2018-17182 CVE-2018-5391 CVE-2019-10220 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-12749 CVE-2019-15917 CVE-2019-5108 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2019-9811 CVE-2020-1749 CVE-2020-4044 CVE-2021-23961 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 CVE-2021-24002 CVE-2021-29945 CVE-2021-29946 SUSE-SU-2015:0426-1 SUSE-SU-2015:0676-1 SUSE-SU-2016:2879-1 SUSE-SU-2017:3215-1 SUSE-SU-2018:0120-1 SUSE-SU-2018:1398-1 SUSE-SU-2018:1401-1 SUSE-SU-2019:1591-1 SUSE-SU-2019:1861-1 SUSE-SU-2019:3233-1 SUSE-SU-2020:1943-1 SUSE-SU-2021:1325-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND cifs-utils-6.5-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libBasicUsageEnvironment1-2019.06.28-lp151.2.3 is installed OR libUsageEnvironment3-2019.06.28-lp151.2.3 is installed OR libgroupsock8-2019.06.28-lp151.2.3 is installed OR libliveMedia66-2019.06.28-lp151.2.3 is installed OR live555-2019.06.28-lp151.2.3 is installed OR live555-devel-2019.06.28-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND libssh2-1-1.2.9-4.2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information dbus-1-1.8.22-24.19 is installed OR dbus-1-x11-1.8.22-24.19 is installed OR libdbus-1-3-1.8.22-24.19 is installed OR libdbus-1-3-32bit-1.8.22-24.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information hplip-3.14.6-3 is installed OR hplip-hpijs-3.14.6-3 is installed OR hplip-sane-3.14.6-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.7.0-109.72 is installed OR MozillaFirefox-devel-60.7.0-109.72 is installed OR MozillaFirefox-translations-common-60.7.0-109.72 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND lftp-4.7.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-78.10.0-112.57.2 is installed OR MozillaFirefox-devel-78.10.0-112.57.2 is installed OR MozillaFirefox-translations-common-78.10.0-112.57.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information qemu-2.9.1-6.44 is installed OR qemu-arm-2.9.1-6.44 is installed OR qemu-block-curl-2.9.1-6.44 is installed OR qemu-block-iscsi-2.9.1-6.44 is installed OR qemu-block-rbd-2.9.1-6.44 is installed OR qemu-block-ssh-2.9.1-6.44 is installed OR qemu-guest-agent-2.9.1-6.44 is installed OR qemu-ipxe-1.0.0+-6.44 is installed OR qemu-kvm-2.9.1-6.44 is installed OR qemu-lang-2.9.1-6.44 is installed OR qemu-ppc-2.9.1-6.44 is installed OR qemu-s390-2.9.1-6.44 is installed OR qemu-seabios-1.10.2-6.44 is installed OR qemu-sgabios-8-6.44 is installed OR qemu-tools-2.9.1-6.44 is installed OR qemu-vgabios-1.10.2-6.44 is installed OR qemu-x86-2.9.1-6.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libipa_hbac0-1.13.4-34.37 is installed OR libsss_idmap0-1.13.4-34.37 is installed OR libsss_nss_idmap0-1.13.4-34.37 is installed OR libsss_sudo-1.13.4-34.37 is installed OR python-sssd-config-1.13.4-34.37 is installed OR sssd-1.13.4-34.37 is installed OR sssd-ad-1.13.4-34.37 is installed OR sssd-ipa-1.13.4-34.37 is installed OR sssd-krb5-1.13.4-34.37 is installed OR sssd-krb5-common-1.13.4-34.37 is installed OR sssd-ldap-1.13.4-34.37 is installed OR sssd-proxy-1.13.4-34.37 is installed OR sssd-tools-1.13.4-34.37 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-devel-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed

BACK