OVAL Reference oval:org.opensuse.security:def:59448

Oval Definition:

oval:org.opensuse.security:def:59448

Revision Date:	2020-12-21	Version:	1
Title:	Security update for MozillaFirefox (Critical)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.6.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2020-55 (bsc#1180039) * CVE-2020-16042 (bmo#1679003) Operations on a BigInt could have caused uninitialized memory to be exposed * CVE-2020-26971 (bmo#1663466) Heap buffer overflow in WebGL * CVE-2020-26973 (bmo#1680084) CSS Sanitizer performed incorrect sanitization * CVE-2020-26974 (bmo#1681022) Incorrect cast of StyleGenericFlexBasis resulted in a heap use-after-free * CVE-2020-26978 (bmo#1677047) Internal network hosts could have been probed by a malicious webpage * CVE-2020-35111 (bmo#1657916) The proxy.onRequest API did not catch view-source URLs * CVE-2020-35112 (bmo#1661365) Opening an extension-less download may have inadvertently launched an executable instead * CVE-2020-35113 (bmo#1664831, bmo#1673589) Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1040519 1048688 1049302 1049305 1049306 1049307 1049308 1049309 1049310 1049311 1049312 1049313 1049314 1049315 1049316 1049317 1049318 1049319 1049320 1049321 1049322 1049323 1049324 1049325 1049326 1049327 1049328 1049329 1049330 1049331 1049332 1055695 1056278 1056280 1056281 1056282 1057358 1057389 1077718 1087082 1087083 1089343 1091396 1104134 1105010 1111180 1114157 1114169 1115904 1122319 1125330 1125357 1127987 1129734 1129821 1130262 1131291 1132852 1133817 1135773 1138459 1141853 1145498 1146206 1148426 1149110 1149535 1151206 1156275 1165402 1165643 1166290 1166844 1167240 1173991 1174284 1175686 1178671 1180039 144694 964336 CVE-2014-6272 CVE-2015-1038 CVE-2016-2335 CVE-2017-1000251 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10078 CVE-2017-10081 CVE-2017-10086 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10105 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10111 CVE-2017-10114 CVE-2017-10115 CVE-2017-10116 CVE-2017-10118 CVE-2017-10125 CVE-2017-10135 CVE-2017-10176 CVE-2017-10193 CVE-2017-10198 CVE-2017-10243 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-5637 CVE-2018-10851 CVE-2018-14626 CVE-2018-15473 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-20852 CVE-2018-3639 CVE-2018-3640 CVE-2018-3646 CVE-2019-0201 CVE-2019-10160 CVE-2019-11596 CVE-2019-14869 CVE-2019-15026 CVE-2019-3871 CVE-2019-5785 CVE-2019-6116 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-10531 CVE-2020-12321 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-16042 CVE-2020-26971 CVE-2020-26973 CVE-2020-26974 CVE-2020-26978 CVE-2020-35111 CVE-2020-35112 CVE-2020-35113 CVE-2020-5247 CVE-2020-9543 SUSE-SU-2017:2175-1 SUSE-SU-2017:2420-1 SUSE-SU-2017:2523-1 SUSE-SU-2018:3910-1 SUSE-SU-2019:0852-1 SUSE-SU-2019:1136-1 SUSE-SU-2019:2091-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:1066-1 SUSE-SU-2020:1180-1 SUSE-SU-2020:2544-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information ibus-chewing-1.4.14-lp150.1 is installed OR ibus-pinyin-1.5.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.3 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.30 is installed OR openssh-askpass-gnome-7.2p2-74.30 is installed OR openssh-fips-7.2p2-74.30 is installed OR openssh-helpers-7.2p2-74.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libevent-2_0-5-2.0.21-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND gd-2.1.0-24.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information MozillaFirefox-78.6.0-112.39.1 is installed OR MozillaFirefox-devel-78.6.0-112.39.1 is installed OR MozillaFirefox-translations-common-78.6.0-112.39.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ardana-ansible-8.0+git.1583432621.24fa60e-3.70 is installed OR ardana-barbican-8.0+git.1585152761.8ef3d61-4.33 is installed OR ardana-db-8.0+git.1583944923.03cca6c-3.31 is installed OR ardana-monasca-8.0+git.1583944894.38f023a-3.24 is installed OR ardana-mq-8.0+git.1583944811.dc14403-3.19 is installed OR ardana-neutron-8.0+git.1584715262.e4ea620-3.39 is installed OR ardana-octavia-8.0+git.1585171918.418f5cf-3.26 is installed OR ardana-tempest-8.0+git.1585311051.6ab5488-3.33 is installed OR documentation-suse-openstack-cloud-installation-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-operations-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-opsconsole-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-planning-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-security-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-supplement-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-user-8.20200319-1.23 is installed OR memcached-1.5.17-3.3 is installed OR openstack-manila-5.1.1~dev5-3.26 is installed OR openstack-manila-api-5.1.1~dev5-3.26 is installed OR openstack-manila-data-5.1.1~dev5-3.26 is installed OR openstack-manila-doc-5.1.1~dev5-3.26 is installed OR openstack-manila-scheduler-5.1.1~dev5-3.26 is installed OR openstack-manila-share-5.1.1~dev5-3.26 is installed OR openstack-neutron-11.0.9~dev63-3.30 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-doc-11.0.9~dev63-3.30 is installed OR openstack-neutron-ha-tool-11.0.9~dev63-3.30 is installed OR openstack-neutron-l3-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metadata-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metering-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-server-11.0.9~dev63-3.30 is installed OR openstack-nova-16.1.9~dev61-3.35 is installed OR openstack-nova-api-16.1.9~dev61-3.35 is installed OR openstack-nova-cells-16.1.9~dev61-3.35 is installed OR openstack-nova-compute-16.1.9~dev61-3.35 is installed OR openstack-nova-conductor-16.1.9~dev61-3.35 is installed OR openstack-nova-console-16.1.9~dev61-3.35 is installed OR openstack-nova-consoleauth-16.1.9~dev61-3.35 is installed OR openstack-nova-doc-16.1.9~dev61-3.35 is installed OR openstack-nova-novncproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-placement-api-16.1.9~dev61-3.35 is installed OR openstack-nova-scheduler-16.1.9~dev61-3.35 is installed OR openstack-nova-serialproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-vncproxy-16.1.9~dev61-3.35 is installed OR pdns-4.1.2-3.6 is installed OR pdns-backend-mysql-4.1.2-3.6 is installed OR python-amqp-2.4.2-3.9 is installed OR python-manila-5.1.1~dev5-3.26 is installed OR python-neutron-11.0.9~dev63-3.30 is installed OR python-nova-16.1.9~dev61-3.35 is installed OR venv-openstack-aodh-5.1.1~dev7-12.24 is installed OR venv-openstack-aodh-x86_64-5.1.1~dev7-12.24 is installed OR venv-openstack-barbican-5.0.2~dev3-12.25 is installed OR venv-openstack-barbican-x86_64-5.0.2~dev3-12.25 is installed OR venv-openstack-ceilometer-9.0.8~dev7-12.22 is installed OR venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.22 is installed OR venv-openstack-cinder-11.2.3~dev23-14.25 is installed OR venv-openstack-cinder-x86_64-11.2.3~dev23-14.25 is installed OR venv-openstack-designate-5.0.3~dev7-12.23 is installed OR venv-openstack-designate-x86_64-5.0.3~dev7-12.23 is installed OR venv-openstack-freezer-5.0.0.0~xrc2~dev2-10.20 is installed OR venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.20 is installed OR venv-openstack-glance-15.0.3~dev3-12.23 is installed OR venv-openstack-glance-x86_64-15.0.3~dev3-12.23 is installed OR venv-openstack-heat-9.0.8~dev22-12.25 is installed OR venv-openstack-heat-x86_64-9.0.8~dev22-12.25 is installed OR venv-openstack-ironic-9.1.8~dev8-12.25 is installed OR venv-openstack-ironic-x86_64-9.1.8~dev8-12.25 is installed OR venv-openstack-keystone-12.0.4~dev5-11.26 is installed OR venv-openstack-keystone-x86_64-12.0.4~dev5-11.26 is installed OR venv-openstack-magnum-5.0.2_5.0.2_5.0.2~dev31-11.24 is installed OR venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.24 is installed OR venv-openstack-manila-5.1.1~dev5-12.29 is installed OR venv-openstack-manila-x86_64-5.1.1~dev5-12.29 is installed OR venv-openstack-monasca-ceilometer-1.5.1_1.5.1_1.5.1~dev3-8.20 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.20 is installed OR venv-openstack-murano-4.0.2~dev2-12.20 is installed OR venv-openstack-murano-x86_64-4.0.2~dev2-12.20 is installed OR venv-openstack-neutron-11.0.9~dev63-13.28 is installed OR venv-openstack-neutron-x86_64-11.0.9~dev63-13.28 is installed OR venv-openstack-nova-16.1.9~dev61-11.26 is installed OR venv-openstack-nova-x86_64-16.1.9~dev61-11.26 is installed OR venv-openstack-octavia-1.0.6~dev3-12.25 is installed OR venv-openstack-octavia-x86_64-1.0.6~dev3-12.25 is installed OR venv-openstack-sahara-7.0.5~dev4-11.24 is installed OR venv-openstack-sahara-x86_64-7.0.5~dev4-11.24 is installed OR venv-openstack-trove-8.0.2~dev2-11.24 is installed OR venv-openstack-trove-x86_64-8.0.2~dev2-11.24 is installed OR zookeeper-3.4.10-3.6 is installed OR zookeeper-server-3.4.10-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed

BACK