Oval Definition:oval:org.opensuse.security:def:58402
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 (bsc#1160498) * CVE-2019-17026 (bmo#1607443) IonMonkey type confusion with StoreElementHole and FallibleStoreElement

- Firefox Extended Support Release 68.4.0 ESR * Fixed: Various security fixes MFSA 2020-02 (bsc#1160305) * CVE-2019-17015 (bmo#1599005) Memory corruption in parent process during new content process initialization on Windows * CVE-2019-17016 (bmo#1599181) Bypass of @namespace CSS sanitization during pasting * CVE-2019-17017 (bmo#1603055) Type Confusion in XPCVariant.cpp * CVE-2019-17021 (bmo#1599008) Heap address disclosure in parent process during content process initialization on Windows * CVE-2019-17022 (bmo#1602843) CSS sanitization does not escape HTML tags * CVE-2019-17024 (bmo#1507180, bmo#1595470, bmo#1598605, bmo#1601826) Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
Family:unixClass:patch
Status:Reference(s):1005070
1005072
1005076
1017308
1017310
1017311
1017312
1017313
1017314
1017318
1017319
1017320
1017321
1017322
1017324
1017325
1017326
1017421
1020433
1020435
1020436
1020439
1020441
1020443
1020446
1020448
1035829
1041830
1045060
1045062
1045065
1046853
1046858
1047964
1047965
1048510
1049344
1052829
1065276
1066156
1068251
1070428
1071558
1074254
1075724
1076308
1081741
1083125
1085447
1090368
1090646
1090869
1091236
1092548
1103411
1119947
1124729
1124734
1128378
1128471
1128472
1128474
1128476
1128480
1128481
1128490
1128492
1128493
1153674
1160305
1160498
1174633
1174635
1174638
897422
986566
989980
998677
CVE-2015-2304
CVE-2016-10046
CVE-2016-10048
CVE-2016-10049
CVE-2016-10050
CVE-2016-10051
CVE-2016-10052
CVE-2016-10059
CVE-2016-10060
CVE-2016-10061
CVE-2016-10062
CVE-2016-10063
CVE-2016-10064
CVE-2016-10065
CVE-2016-10068
CVE-2016-10069
CVE-2016-10070
CVE-2016-10071
CVE-2016-10144
CVE-2016-10145
CVE-2016-10146
CVE-2016-5418
CVE-2016-5844
CVE-2016-6250
CVE-2016-8687
CVE-2016-8688
CVE-2016-8689
CVE-2017-10684
CVE-2017-10685
CVE-2017-11112
CVE-2017-11113
CVE-2017-13166
CVE-2017-15908
CVE-2017-3167
CVE-2017-3169
CVE-2017-5506
CVE-2017-5507
CVE-2017-5508
CVE-2017-5510
CVE-2017-5511
CVE-2017-7679
CVE-2017-7753
CVE-2017-7779
CVE-2017-7782
CVE-2017-7784
CVE-2017-7785
CVE-2017-7786
CVE-2017-7787
CVE-2017-7791
CVE-2017-7792
CVE-2017-7798
CVE-2017-7800
CVE-2017-7801
CVE-2017-7802
CVE-2017-7803
CVE-2017-7804
CVE-2017-7807
CVE-2018-1049
CVE-2018-1050
CVE-2018-10858
CVE-2018-1087
CVE-2018-16884
CVE-2018-5150
CVE-2018-5154
CVE-2018-5155
CVE-2018-5157
CVE-2018-5158
CVE-2018-5159
CVE-2018-5168
CVE-2018-5174
CVE-2018-5178
CVE-2018-5183
CVE-2018-8781
CVE-2018-8897
CVE-2019-14287
CVE-2019-17015
CVE-2019-17016
CVE-2019-17017
CVE-2019-17021
CVE-2019-17022
CVE-2019-17024
CVE-2019-17026
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
SUSE-SU-2016:2911-1
SUSE-SU-2017:0529-1
SUSE-SU-2017:1714-1
SUSE-SU-2017:2075-1
SUSE-SU-2017:2589-1
SUSE-SU-2018:0299-1
SUSE-SU-2018:1516-1
SUSE-SU-2018:2339-2
SUSE-SU-2019:0655-1
SUSE-SU-2019:2667-1
SUSE-SU-2020:0068-1
SUSE-SU-2020:2331-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apparmor-abstractions-2.12-lp150.5 is installed
  • OR apparmor-docs-2.12-lp150.5 is installed
  • OR apparmor-parser-2.12-lp150.5 is installed
  • OR apparmor-parser-lang-2.12-lp150.5 is installed
  • OR apparmor-profiles-2.12-lp150.5 is installed
  • OR apparmor-utils-2.12-lp150.5 is installed
  • OR apparmor-utils-lang-2.12-lp150.5 is installed
  • OR perl-apparmor-2.12-lp150.5 is installed
  • OR python3-apparmor-2.12-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libecpg6-10.9-lp151.2.3 is installed
  • OR libecpg6-32bit-10.9-lp151.2.3 is installed
  • OR libpq5-10.9-lp151.2.3 is installed
  • OR libpq5-32bit-10.9-lp151.2.3 is installed
  • OR postgresql10-10.9-lp151.2.3 is installed
  • OR postgresql10-contrib-10.9-lp151.2.3 is installed
  • OR postgresql10-devel-10.9-lp151.2.3 is installed
  • OR postgresql10-docs-10.9-lp151.2.3 is installed
  • OR postgresql10-plperl-10.9-lp151.2.3 is installed
  • OR postgresql10-plpython-10.9-lp151.2.3 is installed
  • OR postgresql10-pltcl-10.9-lp151.2.3 is installed
  • OR postgresql10-server-10.9-lp151.2.3 is installed
  • OR postgresql10-test-10.9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • apache2-2.4.23-28 is installed
  • OR apache2-doc-2.4.23-28 is installed
  • OR apache2-example-pages-2.4.23-28 is installed
  • OR apache2-prefork-2.4.23-28 is installed
  • OR apache2-utils-2.4.23-28 is installed
  • OR apache2-worker-2.4.23-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.29 is installed
  • OR samba-4.2.4-28.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.8.0esr-109.31 is installed
  • OR MozillaFirefox-devel-52.8.0esr-109.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dbus-1-1.8.22-28 is installed
  • OR dbus-1-x11-1.8.22-28 is installed
  • OR libdbus-1-3-1.8.22-28 is installed
  • OR libdbus-1-3-32bit-1.8.22-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND ucode-intel-20190618-13.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libXcursor-1.1.14-4.6 is installed
  • OR libXcursor1-1.1.14-4.6 is installed
  • OR libXcursor1-32bit-1.1.14-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.8 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • MozillaFirefox-68.4.1-109.101 is installed
  • OR MozillaFirefox-devel-68.4.1-109.101 is installed
  • OR MozillaFirefox-translations-common-68.4.1-109.101 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed
  • OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed
  • OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed
  • OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed
    • BACK