Oval Definition:oval:org.opensuse.security:def:58554
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox, mozilla-nss (Important)
Description:

This update for MozillaFirefox to ESR 52.4, mozilla-nss fixes the following issues:

This security issue was fixed for mozilla-nss:

- CVE-2017-7805: Prevent use-after-free in TLS 1.2 when generating handshake hashes (bsc#1061005)

These security issues were fixed for Firefox

- CVE-2017-7825: Fixed some Tibetan and Arabic unicode characters rendering (bsc#1060445). - CVE-2017-7805: Prevent Use-after-free in TLS 1.2 generating handshake hashes (bsc#1060445). - CVE-2017-7819: Prevent Use-after-free while resizing images in design mode (bsc#1060445). - CVE-2017-7818: Prevent Use-after-free during ARIA array manipulation (bsc#1060445). - CVE-2017-7793: Prevent Use-after-free with Fetch API (bsc#1060445). - CVE-2017-7824: Prevent Buffer overflow when drawing and validating elements with ANGLE (bsc#1060445). - CVE-2017-7810: Fixed several memory safety bugs (bsc#1060445). - CVE-2017-7823: CSP sandbox directive did not create a unique origin (bsc#1060445). - CVE-2017-7814: Blob and data URLs bypassed phishing and malware protection warnings (bsc#1060445).
Family:unixClass:patch
Status:Reference(s):1020108
1022805
1027519
1028842
1031247
1031249
1031250
1031254
1031255
1031262
1031263
1039063
1039064
1039066
1039069
1039661
1060445
1061005
1062063
1066644
1069257
1071459
1071460
1074562
1086039
1092631
1103098
1118595
1118596
1119947
1154328
1160467
1160468
1160968
1163985
1177914
963448
981114
CVE-2016-10266
CVE-2016-10267
CVE-2016-10268
CVE-2016-10269
CVE-2016-10270
CVE-2016-10271
CVE-2016-10272
CVE-2016-1839
CVE-2016-2037
CVE-2016-2399
CVE-2017-16548
CVE-2017-16899
CVE-2017-17433
CVE-2017-17434
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2017-7793
CVE-2017-7805
CVE-2017-7810
CVE-2017-7814
CVE-2017-7818
CVE-2017-7819
CVE-2017-7823
CVE-2017-7824
CVE-2017-7825
CVE-2017-9047
CVE-2017-9048
CVE-2017-9049
CVE-2017-9050
CVE-2018-15518
CVE-2018-16884
CVE-2018-19873
CVE-2018-3639
CVE-2018-5391
CVE-2019-14896
CVE-2019-14897
CVE-2019-3693
CVE-2020-15999
CVE-2020-1720
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2659
SUSE-SU-2017:0366-1
SUSE-SU-2017:0610-1
SUSE-SU-2017:1044-1
SUSE-SU-2017:1454-1
SUSE-SU-2017:2688-1
SUSE-SU-2018:0118-1
SUSE-SU-2018:0231-1
SUSE-SU-2018:4183-1
SUSE-SU-2019:3076-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • dbus-1-glib-0.108-lp150.1 is installed
  • OR dbus-1-glib-tool-0.108-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • neovim-0.3.7-lp151.2.7 is installed
  • OR neovim-lang-0.3.7-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-52.4.0esr-109.6 is installed
  • OR MozillaFirefox-translations-52.4.0esr-109.6 is installed
  • OR libfreebl3-3.29.5-58.3 is installed
  • OR libfreebl3-32bit-3.29.5-58.3 is installed
  • OR libfreebl3-hmac-3.29.5-58.3 is installed
  • OR libfreebl3-hmac-32bit-3.29.5-58.3 is installed
  • OR libsoftokn3-3.29.5-58.3 is installed
  • OR libsoftokn3-32bit-3.29.5-58.3 is installed
  • OR libsoftokn3-hmac-3.29.5-58.3 is installed
  • OR libsoftokn3-hmac-32bit-3.29.5-58.3 is installed
  • OR mozilla-nss-3.29.5-58.3 is installed
  • OR mozilla-nss-32bit-3.29.5-58.3 is installed
  • OR mozilla-nss-certs-3.29.5-58.3 is installed
  • OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed
  • OR mozilla-nss-sysinit-3.29.5-58.3 is installed
  • OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed
  • OR mozilla-nss-tools-3.29.5-58.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libQt5Concurrent5-5.6.1-17.6 is installed
  • OR libQt5Core5-5.6.1-17.6 is installed
  • OR libQt5DBus5-5.6.1-17.6 is installed
  • OR libQt5Gui5-5.6.1-17.6 is installed
  • OR libQt5Network5-5.6.1-17.6 is installed
  • OR libQt5OpenGL5-5.6.1-17.6 is installed
  • OR libQt5PrintSupport5-5.6.1-17.6 is installed
  • OR libQt5Sql5-5.6.1-17.6 is installed
  • OR libQt5Sql5-mysql-5.6.1-17.6 is installed
  • OR libQt5Sql5-postgresql-5.6.1-17.6 is installed
  • OR libQt5Sql5-sqlite-5.6.1-17.6 is installed
  • OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed
  • OR libQt5Test5-5.6.1-17.6 is installed
  • OR libQt5Widgets5-5.6.1-17.6 is installed
  • OR libQt5Xml5-5.6.1-17.6 is installed
  • OR libqt5-qtbase-5.6.1-17.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libapr1-1.5.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-78.1.0-112.8 is installed
  • OR MozillaFirefox-devel-78.1.0-112.8 is installed
  • OR MozillaFirefox-translations-common-78.1.0-112.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND unzip-6.00-33.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libapr-util1-1.5.3-2.3 is installed
  • OR libapr-util1-dbd-sqlite3-1.5.3-2.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • freeradius-server-3.0.15-2.14 is installed
  • OR freeradius-server-doc-3.0.15-2.14 is installed
  • OR freeradius-server-krb5-3.0.15-2.14 is installed
  • OR freeradius-server-ldap-3.0.15-2.14 is installed
  • OR freeradius-server-libs-3.0.15-2.14 is installed
  • OR freeradius-server-mysql-3.0.15-2.14 is installed
  • OR freeradius-server-perl-3.0.15-2.14 is installed
  • OR freeradius-server-postgresql-3.0.15-2.14 is installed
  • OR freeradius-server-python-3.0.15-2.14 is installed
  • OR freeradius-server-sqlite-3.0.15-2.14 is installed
  • OR freeradius-server-utils-3.0.15-2.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.17-28.42 is installed
  • OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed
  • OR python-2.7.17-28.42 is installed
  • OR python-32bit-2.7.17-28.42 is installed
  • OR python-base-2.7.17-28.42 is installed
  • OR python-base-32bit-2.7.17-28.42 is installed
  • OR python-curses-2.7.17-28.42 is installed
  • OR python-demo-2.7.17-28.42 is installed
  • OR python-devel-2.7.17-28.42 is installed
  • OR python-doc-2.7.17-28.42 is installed
  • OR python-doc-pdf-2.7.17-28.42 is installed
  • OR python-gdbm-2.7.17-28.42 is installed
  • OR python-idle-2.7.17-28.42 is installed
  • OR python-rpm-macros-20200207.5feb6c1-3.19 is installed
  • OR python-tk-2.7.17-28.42 is installed
  • OR python-xml-2.7.17-28.42 is installed
  • OR shared-python-startup-0.1-1.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-requests-2.20.1-4.3 is installed
    • BACK