Oval Definition:	oval:org.opensuse.security:def:58999
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox to the ESR 52.8 release fixes the following issues: Mozil to Firefox ESR 52.8 (bsc#1092548) Security issues fixed: - MFSA 2018-12/CVE-2018-5159: Integer overflow and out-of-bounds write in Skia - MFSA 2018-12/CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer - MFSA 2018-12/CVE-2018-5168: Lightweight themes can be installed without user interaction - MFSA 2018-12/CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 - MFSA 2018-12/CVE-2018-5155: Use-after-free with SVG animations and text paths - MFSA 2018-12/CVE-2018-5183: Backport critical security fixes in Skia - MFSA 2018-12/CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files - MFSA 2018-12/CVE-2018-5154: Use-after-free with SVG animations and clip paths - MFSA 2018-12/CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension Family: unix Class: patch Status: Reference(s): 1092548 1101644 1101645 1101651 1101656 1106812 1118277 1121826 1122292 1122293 1122299 1128158 1132728 1132729 1132732 1132734 1134718 1138461 1151021 1153108 1153165 1154217 1155787 1156321 1156331 1159646 1159913 1165631 1171252 1171254 1173902 1173994 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2017-2518 CVE-2018-11212 CVE-2018-1890 CVE-2018-19788 CVE-2018-20856 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5168 CVE-2018-5174 CVE-2018-5178 CVE-2018-5183 CVE-2019-10220 CVE-2019-10245 CVE-2019-12855 CVE-2019-13272 CVE-2019-14835 CVE-2019-14853 CVE-2019-14859 CVE-2019-17571 CVE-2019-2422 CVE-2019-2449 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-5108 CVE-2019-6133 CVE-2020-12653 CVE-2020-12654 CVE-2020-14318 CVE-2020-14323 CVE-2020-1749 SUSE-SU-2018:1334-1 SUSE-SU-2018:3064-2 SUSE-SU-2019:1345-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:2453-1 SUSE-SU-2019:3024-1 SUSE-SU-2019:3050-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:3083-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND xorg-x11-libs-7.6.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gvfs-1.34.2.1-lp151.6.3 is installed OR gvfs-32bit-1.34.2.1-lp151.6.3 is installed OR gvfs-backend-afc-1.34.2.1-lp151.6.3 is installed OR gvfs-backend-samba-1.34.2.1-lp151.6.3 is installed OR gvfs-backends-1.34.2.1-lp151.6.3 is installed OR gvfs-devel-1.34.2.1-lp151.6.3 is installed OR gvfs-fuse-1.34.2.1-lp151.6.3 is installed OR gvfs-lang-1.34.2.1-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libpolkit0-0.113-5.15 is installed OR polkit-0.113-5.15 is installed OR typelib-1_0-Polkit-1_0-0.113-5.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.0esr-109.31 is installed OR MozillaFirefox-devel-52.8.0esr-109.31 is installed OR MozillaFirefox-translations-52.8.0esr-109.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND logrotate-3.11.0-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.47 is installed OR libcurl4-7.37.0-37.47 is installed OR libcurl4-32bit-7.37.0-37.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.2_10-3.41 is installed OR xen-doc-html-4.9.2_10-3.41 is installed OR xen-libs-4.9.2_10-3.41 is installed OR xen-libs-32bit-4.9.2_10-3.41 is installed OR xen-tools-4.9.2_10-3.41 is installed OR xen-tools-domU-4.9.2_10-3.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXfixes3-5.0.1-7 is installed OR libXfixes3-32bit-5.0.1-7 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
BACK