OVAL Reference oval:org.opensuse.security:def:58297

Oval Definition:

oval:org.opensuse.security:def:58297

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Important)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53.1 - CVE-2020-12402: Fixed a potential side channel attack during RSA key generation (bsc#1173032). - CVE-2020-12399: Fixed a timing attack on DSA signature generation (bsc#1171978). - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - Fixed various FIPS issues in libfreebl3 which were causing segfaults in the test suite of chrony (bsc#1168669). - Fixed an issue where Firefox tab was crashing (bsc#1170908). Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes mozilla-nspr to version 4.25
Family:	unix	Class:	patch
Status:		Reference(s):	1000106 1003030 1003032 1004981 1005004 1005005 1007157 1007941 1009100 1009103 1009104 1009105 1009107 1009108 1009109 1009111 1011652 1027519 1029638 1029639 1029706 1029707 1029751 1053417 1083125 1085447 1090368 1090646 1090869 1091236 1104205 1105528 1108940 1109209 1114423 1115040 1115045 1115047 1116380 1117756 1121571 1121816 1121818 1121821 1127223 1127308 1128471 1128472 1128474 1128476 1128480 1128481 1128490 1128492 1128493 1128574 1133191 1136446 1136935 1137597 1144524 1159819 1164692 1166847 1168630 1168669 1169746 1170908 1171978 1173022 1175070 1175071 1175072 1178512 CVE-2009-5155 CVE-2016-7777 CVE-2016-7908 CVE-2016-7909 CVE-2016-8667 CVE-2016-8669 CVE-2016-8910 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9384 CVE-2016-9385 CVE-2016-9386 CVE-2016-9637 CVE-2017-13166 CVE-2017-6435 CVE-2017-6436 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2018-1087 CVE-2018-14526 CVE-2018-18849 CVE-2018-19665 CVE-2018-19961 CVE-2018-19962 CVE-2018-19965 CVE-2018-19966 CVE-2018-20685 CVE-2018-8781 CVE-2018-8897 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-13456 CVE-2019-17006 CVE-2019-17185 CVE-2019-3846 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-9169 CVE-2020-11985 CVE-2020-11993 CVE-2020-12399 CVE-2020-12402 CVE-2020-1938 CVE-2020-28196 CVE-2020-6819 CVE-2020-6820 CVE-2020-9490 SUSE-SU-2016:3067-1 SUSE-SU-2017:2201-1 SUSE-SU-2017:3441-1 SUSE-SU-2018:1505-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0655-1 SUSE-SU-2019:1088-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:2391-1 SUSE-SU-2020:2450-1 SUSE-SU-2020:3379-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gdk-pixbuf-lang-2.36.11-lp150.3 is installed OR gdk-pixbuf-query-loaders-2.36.11-lp150.3 is installed OR gdk-pixbuf-thumbnailer-2.36.11-lp150.3 is installed OR libgdk_pixbuf-2_0-0-2.36.11-lp150.3 is installed OR typelib-1_0-GdkPixbuf-2_0-2.36.11-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-devel-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-lang-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-djvudocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-dvidocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-tiffdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-xpsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevview3-3-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xen-4.7.1_02-25 is installed OR xen-doc-html-4.7.1_02-25 is installed OR xen-libs-4.7.1_02-25 is installed OR xen-libs-32bit-4.7.1_02-25 is installed OR xen-tools-4.7.1_02-25 is installed OR xen-tools-domU-4.7.1_02-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.35 is installed OR openssh-askpass-gnome-7.2p2-74.35 is installed OR openssh-fips-7.2p2-74.35 is installed OR openssh-helpers-7.2p2-74.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libqca2-2.0.3-17.7 is installed OR libqca2-32bit-2.0.3-17.7 is installed OR libqt4-4.8.7-8.8 is installed OR libqt4-32bit-4.8.7-8.8 is installed OR libqt4-devel-doc-4.8.7-8.8 is installed OR libqt4-qt3support-4.8.7-8.8 is installed OR libqt4-qt3support-32bit-4.8.7-8.8 is installed OR libqt4-sql-4.8.7-8.8 is installed OR libqt4-sql-32bit-4.8.7-8.8 is installed OR libqt4-sql-mysql-4.8.7-8.8 is installed OR libqt4-sql-plugins-4.8.7-8.8 is installed OR libqt4-sql-sqlite-4.8.7-8.8 is installed OR libqt4-x11-4.8.7-8.8 is installed OR libqt4-x11-32bit-4.8.7-8.8 is installed OR qt4-x11-tools-4.8.7-8.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.20.3-2.23 is installed OR libwebkit2gtk-4_0-37-2.20.3-2.23 is installed OR typelib-1_0-JavaScriptCore-4_0-2.20.3-2.23 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-2.23 is installed OR webkit2gtk-4_0-injected-bundles-2.20.3-2.23 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-paramiko-2.2.4-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed

BACK