OVAL Reference oval:org.opensuse.security:def:59053

Oval Definition:

oval:org.opensuse.security:def:59053

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: - Mozilla Firefox Firefox 60.7.2 MFSA 2019-19 (bsc#1138872) - CVE-2019-11708: Fix sandbox escape using Prompt:Open. * Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes could result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer.
Family:	unix	Class:	patch
Status:		Reference(s):	1026236 1043983 1048072 1055265 1056134 1056286 1056782 1058754 1058755 1058757 1062452 1069607 1069632 1073002 1078782 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1087813 1104668 1112530 1112532 1114988 1119947 1120386 1123157 1126140 1126141 1126192 1126195 1126196 1126198 1126201 1127400 1129623 1130611 1130617 1130620 1130622 1130623 1130627 1132728 1132729 1132732 1132734 1133037 1133147 1134718 1137325 1138872 1141619 1143797 1145929 1146874 1149591 1149813 1152990 1152992 1152994 1152995 1154118 1154844 1154862 1155689 1157155 1157157 1157303 1157804 1158021 1158642 1158819 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1160195 1160398 1160968 1161586 1162227 1162928 1162929 1162931 1163508 1163971 1164009 1164051 1164069 1164078 1164692 1164846 1165111 1165311 1165873 1165881 1165984 1165985 1167421 1167423 1167629 1168075 1168295 1168424 1168829 1168854 1169511 1170056 1170345 1170778 1170847 1171352 1171517 1172275 1172277 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 CVE-2011-1097 CVE-2014-2855 CVE-2014-8242 CVE-2014-9512 CVE-2015-8872 CVE-2015-9096 CVE-2016-0705 CVE-2016-2339 CVE-2016-4804 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-18255 CVE-2017-18922 CVE-2017-3732 CVE-2017-3736 CVE-2017-9228 CVE-2017-9229 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12539 CVE-2018-1517 CVE-2018-16395 CVE-2018-16396 CVE-2018-1656 CVE-2018-16884 CVE-2018-19967 CVE-2018-21008 CVE-2018-21247 CVE-2018-2940 CVE-2018-2952 CVE-2018-2964 CVE-2018-2973 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-1010006 CVE-2019-10245 CVE-2019-11091 CVE-2019-11459 CVE-2019-11708 CVE-2019-12068 CVE-2019-14378 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15845 CVE-2019-15890 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-17340 CVE-2019-17341 CVE-2019-17342 CVE-2019-17343 CVE-2019-17344 CVE-2019-17346 CVE-2019-17347 CVE-2019-17348 CVE-2019-17498 CVE-2019-18675 CVE-2019-19066 CVE-2019-19319 CVE-2019-19447 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-20839 CVE-2019-20840 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-2949 CVE-2019-3701 CVE-2019-5108 CVE-2019-6778 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-9455 CVE-2019-9458 CVE-2019-9824 CVE-2020-10663 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-14403 CVE-2020-14404 CVE-2020-1938 CVE-2020-2654 CVE-2020-2732 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2019:0921-1 SUSE-SU-2019:1345-1 SUSE-SU-2019:1684-1 SUSE-SU-2019:2080-1 SUSE-SU-2019:2936-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:1275-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:1686-1 SUSE-SU-2020:2167-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information pdns-4.1.7-17 is installed OR pdns-backend-geoip-4.1.2-lp150.3.10 is installed OR pdns-backend-godbc-4.1.7-17 is installed OR pdns-backend-ldap-4.1.7-17 is installed OR pdns-backend-lua-4.1.7-17 is installed OR pdns-backend-mydns-4.1.7-17 is installed OR pdns-backend-mysql-4.1.7-17 is installed OR pdns-backend-postgresql-4.1.7-17 is installed OR pdns-backend-remote-4.1.7-17 is installed OR pdns-backend-sqlite3-4.1.7-17 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information java-11-openjdk-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-accessibility-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-demo-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-devel-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-headless-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-javadoc-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-jmods-11.0.4.0-lp151.3.6 is installed OR java-11-openjdk-src-11.0.4.0-lp151.3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.45-38.37 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-devel-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND dosfstools-3.0.26-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND binutils-2.32-9.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information rsyslog-8.24.0-3.7 is installed OR rsyslog-diag-tools-8.24.0-3.7 is installed OR rsyslog-doc-8.24.0-3.7 is installed OR rsyslog-module-gssapi-8.24.0-3.7 is installed OR rsyslog-module-gtls-8.24.0-3.7 is installed OR rsyslog-module-mysql-8.24.0-3.7 is installed OR rsyslog-module-pgsql-8.24.0-3.7 is installed OR rsyslog-module-relp-8.24.0-3.7 is installed OR rsyslog-module-snmp-8.24.0-3.7 is installed OR rsyslog-module-udpspoof-8.24.0-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libX11-1.6.2-12.8 is installed OR libX11-6-1.6.2-12.8 is installed OR libX11-6-32bit-1.6.2-12.8 is installed OR libX11-data-1.6.2-12.8 is installed OR libX11-xcb1-1.6.2-12.8 is installed OR libX11-xcb1-32bit-1.6.2-12.8 is installed OR libxcb-1.10-4.5 is installed OR libxcb-dri2-0-1.10-4.5 is installed OR libxcb-dri2-0-32bit-1.10-4.5 is installed OR libxcb-dri3-0-1.10-4.5 is installed OR libxcb-dri3-0-32bit-1.10-4.5 is installed OR libxcb-glx0-1.10-4.5 is installed OR libxcb-glx0-32bit-1.10-4.5 is installed OR libxcb-present0-1.10-4.5 is installed OR libxcb-present0-32bit-1.10-4.5 is installed OR libxcb-randr0-1.10-4.5 is installed OR libxcb-render0-1.10-4.5 is installed OR libxcb-render0-32bit-1.10-4.5 is installed OR libxcb-shape0-1.10-4.5 is installed OR libxcb-shm0-1.10-4.5 is installed OR libxcb-shm0-32bit-1.10-4.5 is installed OR libxcb-sync1-1.10-4.5 is installed OR libxcb-sync1-32bit-1.10-4.5 is installed OR libxcb-xf86dri0-1.10-4.5 is installed OR libxcb-xfixes0-1.10-4.5 is installed OR libxcb-xfixes0-32bit-1.10-4.5 is installed OR libxcb-xinerama0-1.10-4.5 is installed OR libxcb-xkb1-1.10-4.5 is installed OR libxcb-xkb1-32bit-1.10-4.5 is installed OR libxcb-xv0-1.10-4.5 is installed OR libxcb1-1.10-4.5 is installed OR libxcb1-32bit-1.10-4.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed

BACK