Oval Definition:oval:org.opensuse.security:def:58452
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:



MozillaFirefox 45 ESR was updated to 45.6 to fix the following issues:

MFSA 2016-95/CVE-2016-9897: Memory corruption in libGLES * MFSA 2016-95/CVE-2016-9901: Data from Pocket server improperly sanitized before execution * MFSA 2016-95/CVE-2016-9898: Use-after-free in Editor while manipulating DOM subtrees * MFSA 2016-95/CVE-2016-9899: Use-after-free while manipulating DOM events and audio elements * MFSA 2016-95/CVE-2016-9904: Cross-origin information leak in shared atoms * MFSA 2016-95/CVE-2016-9905: Crash in EnumerateSubDocuments * MFSA 2016-95/CVE-2016-9895: CSP bypass using marquee tag * MFSA 2016-95/CVE-2016-9900: Restricted external resources can be loaded by SVG images through data URLs * MFSA 2016-95/CVE-2016-9893: Memory safety bugs fixed in Firefox 50.1 and Firefox ESR 45.6 * MFSA 2016-95/CVE-2016-9902: Pocket extension does not validate the origin of events

Please see https://www.mozilla.org/en-US/security/advisories/mfsa2016-95/ for more information.

Family:unixClass:patch
Status:Reference(s):1007454
1008519
1009109
1013285
1013341
1013764
1013767
1014109
1014110
1014111
1014112
1014256
1014514
1015422
1016779
1035829
1041830
1045060
1045062
1045065
1047236
1047240
1052460
1055053
1055063
1056550
1057723
1058422
1058722
1060653
1061876
1063049
1063050
1063824
1064101
1064115
1068689
1076505
1079405
1092885
1111498
1114592
1117025
1117382
1120658
1122000
1122344
1123333
1123892
1125352
1133191
1135254
1136446
1136935
1137597
1141897
1142649
1142654
1148517
1149145
1155419
1160471
1170441
1172031
1172225
1172402
1172405
937125
CVE-2016-9063
CVE-2016-9102
CVE-2016-9103
CVE-2016-9381
CVE-2016-9776
CVE-2016-9845
CVE-2016-9846
CVE-2016-9893
CVE-2016-9895
CVE-2016-9897
CVE-2016-9898
CVE-2016-9899
CVE-2016-9900
CVE-2016-9901
CVE-2016-9902
CVE-2016-9904
CVE-2016-9905
CVE-2016-9907
CVE-2016-9908
CVE-2016-9911
CVE-2016-9912
CVE-2016-9913
CVE-2016-9921
CVE-2016-9922
CVE-2017-1000254
CVE-2017-1000257
CVE-2017-10268
CVE-2017-10378
CVE-2017-12563
CVE-2017-12691
CVE-2017-13061
CVE-2017-13062
CVE-2017-14042
CVE-2017-14174
CVE-2017-14343
CVE-2017-15277
CVE-2017-15281
CVE-2017-16852
CVE-2017-3167
CVE-2017-3169
CVE-2017-7679
CVE-2017-9233
CVE-2018-3639
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-14250
CVE-2019-15681
CVE-2019-15690
CVE-2019-15847
CVE-2019-20788
CVE-2019-20807
CVE-2019-3846
CVE-2019-6454
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
CVE-2020-8022
SUSE-SU-2016:3222-1
SUSE-SU-2017:0127-1
SUSE-SU-2017:1714-1
SUSE-SU-2017:2299-1
SUSE-SU-2017:2831-1
SUSE-SU-2017:3215-1
SUSE-SU-2018:0017-1
SUSE-SU-2018:0384-1
SUSE-SU-2018:1362-2
SUSE-SU-2019:0428-1
SUSE-SU-2020:0394-1
SUSE-SU-2020:1791-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnome-keyring-3.20.1-lp150.2 is installed
  • OR gnome-keyring-lang-3.20.1-lp150.2 is installed
  • OR gnome-keyring-pam-3.20.1-lp150.2 is installed
  • OR libgck-modules-gnome-keyring-3.20.1-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • update-test-32bit-pkg-5.1-lp151.12 is installed
  • OR update-test-affects-package-manager-5.1-lp151.12 is installed
  • OR update-test-broken-5.1-lp151.12 is installed
  • OR update-test-feature-5.1-lp151.12 is installed
  • OR update-test-interactive-5.1-lp151.12 is installed
  • OR update-test-optional-5.1-lp151.12 is installed
  • OR update-test-reboot-needed-5.1-lp151.12 is installed
  • OR update-test-relogin-suggested-5.1-lp151.12 is installed
  • OR update-test-security-5.1-lp151.12 is installed
  • OR update-test-trivial-5.1-lp151.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.6.0esr-96 is installed
  • OR MozillaFirefox-translations-45.6.0esr-96 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • qemu-2.6.2-41.40 is installed
  • OR qemu-block-curl-2.6.2-41.40 is installed
  • OR qemu-block-rbd-2.6.2-41.40 is installed
  • OR qemu-block-ssh-2.6.2-41.40 is installed
  • OR qemu-guest-agent-2.6.2-41.40 is installed
  • OR qemu-ipxe-1.0.0-41.40 is installed
  • OR qemu-kvm-2.6.2-41.40 is installed
  • OR qemu-lang-2.6.2-41.40 is installed
  • OR qemu-seabios-1.9.1-41.40 is installed
  • OR qemu-sgabios-8-41.40 is installed
  • OR qemu-tools-2.6.2-41.40 is installed
  • OR qemu-vgabios-1.9.1-41.40 is installed
  • OR qemu-x86-2.6.2-41.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_109-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_29-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libsystemd0-228-150.63 is installed
  • OR libsystemd0-32bit-228-150.63 is installed
  • OR libudev1-228-150.63 is installed
  • OR libudev1-32bit-228-150.63 is installed
  • OR systemd-228-150.63 is installed
  • OR systemd-32bit-228-150.63 is installed
  • OR systemd-bash-completion-228-150.63 is installed
  • OR systemd-sysvinit-228-150.63 is installed
  • OR udev-228-150.63 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • crash-7.1.8-3 is installed
  • OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libSoundTouch0-1.7.1-5.6 is installed
  • OR soundtouch-1.7.1-5.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-8.7 is installed
  • OR cyrus-sasl-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-8.7 is installed
  • OR libsasl2-3-2.1.26-8.7 is installed
  • OR libsasl2-3-32bit-2.1.26-8.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • BACK