Oval Definition:	oval:org.opensuse.security:def:58411
Revision Date: 2020-12-01 Version: 1 Title: Security update for mozilla-nspr, mozilla-nss (Moderate) Description: This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to NSS 3.47.1: Security issues fixed: - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - CVE-2019-11745: EncryptUpdate should use maxout, not block size (bsc#1158527). - CVE-2019-11727: Fixed vulnerability sign CertificateVerify with PKCS#1 v1.5 signatures issue (bsc#1141322). mozilla-nspr was updated to version 4.23: - Whitespace in C files was cleaned up and no longer uses tab characters for indenting. Family: unix Class: patch Status: Reference(s): 1006796 1007600 1009026 1010395 1010401 1010402 1010404 1010410 1010422 1010427 1010517 1011057 1013496 1016715 1024200 1029638 1029639 1029706 1029707 1029751 1045986 1061041 1083125 1085447 1090368 1090646 1090869 1102682 1104826 1107832 1109673 1110233 1124729 1124734 1125401 1128378 1128525 1130721 1133114 1133145 1141322 1144903 1153108 1153158 1153161 1158527 1159819 1173100 1173659 1173661 1173869 1173942 1173963 1174247 971031 992549 994598 CVE-2015-5191 CVE-2016-4975 CVE-2016-5285 CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297 CVE-2016-8743 CVE-2016-9064 CVE-2016-9066 CVE-2016-9074 CVE-2017-1000368 CVE-2017-13166 CVE-2017-14867 CVE-2017-6435 CVE-2017-6436 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2018-1087 CVE-2018-14633 CVE-2018-14633 CVE-2018-17182 CVE-2018-17407 CVE-2018-5390 CVE-2018-8781 CVE-2018-8897 CVE-2019-10220 CVE-2019-11365 CVE-2019-11366 CVE-2019-11745 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-17006 CVE-2019-17133 CVE-2019-1787 CVE-2019-1788 CVE-2019-1789 CVE-2019-19447 CVE-2019-6974 CVE-2019-7221 CVE-2019-8936 CVE-2019-9213 CVE-2019-9458 CVE-2020-11668 CVE-2020-14331 SUSE-SU-2016:3014-1 SUSE-SU-2017:0702-1 SUSE-SU-2017:1771-1 SUSE-SU-2017:2201-1 SUSE-SU-2017:2747-1 SUSE-SU-2018:1530-1 SUSE-SU-2018:2815-2 SUSE-SU-2019:0897-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:2492-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND bubblewrap-0.2.0-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND teeworlds-0.7.3.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND sudo-1.8.10p3-10.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND atftp-0.7.0-160.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND yast2-smt-3.0.14-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libfreebl3-3.47.1-58.34 is installed OR libfreebl3-32bit-3.47.1-58.34 is installed OR libfreebl3-hmac-3.47.1-58.34 is installed OR libfreebl3-hmac-32bit-3.47.1-58.34 is installed OR libsoftokn3-3.47.1-58.34 is installed OR libsoftokn3-32bit-3.47.1-58.34 is installed OR libsoftokn3-hmac-3.47.1-58.34 is installed OR libsoftokn3-hmac-32bit-3.47.1-58.34 is installed OR mozilla-nspr-4.23-19.12 is installed OR mozilla-nspr-32bit-4.23-19.12 is installed OR mozilla-nss-3.47.1-58.34 is installed OR mozilla-nss-32bit-3.47.1-58.34 is installed OR mozilla-nss-certs-3.47.1-58.34 is installed OR mozilla-nss-certs-32bit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-32bit-3.47.1-58.34 is installed OR mozilla-nss-tools-3.47.1-58.34 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rack-1.6.11-3.3 is installed OR rubygem-rack-1.6.11-3.3 is installed
BACK