Oval Definition:oval:org.opensuse.security:def:59676
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Moderate)
Description:

This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 78.2.0 ESR * Fixed: Various stability, functionality, and security fixes - Mozilla Firefox ESR 78.2 MFSA 2020-38 (bsc#1175686) * CVE-2020-15663 (bmo#1643199) Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege * CVE-2020-15664 (bmo#1658214) Attacker-induced prompt for extension installation * CVE-2020-15670 (bmo#1651001, bmo#1651449, bmo#1653626, bmo#1656957) Memory safety bugs fixed in Firefox 80 and Firefox ESR 78.2

- Fixed Firefox tab crash in FIPS mode (bsc#1174284).

- Fix broken translation-loading. (bsc#1173991) * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more
Family:unixClass:patch
Status:Reference(s):1037811
1068101
1084632
1095218
1095219
1097560
1102682
1103040
1103098
1104457
1106383
1106923
1108835
1109252
1110445
1110723
1111278
1112024
1112039
1113083
1113632
1113665
1114837
1119947
1133191
1133495
1139083
1139459
1144504
1149458
1151377
1151506
1151839
1154043
1155574
1156482
1159814
1162108
1168994
1173377
1173378
1173380
1173812
1173991
1174284
1174463
1174570
1175686
977043
CVE-2015-2924
CVE-2016-0764
CVE-2017-7826
CVE-2017-7828
CVE-2017-7830
CVE-2018-11233
CVE-2018-11235
CVE-2018-14680
CVE-2018-14681
CVE-2018-14682
CVE-2018-15378
CVE-2018-15686
CVE-2018-15688
CVE-2018-16850
CVE-2018-16884
CVE-2018-18386
CVE-2018-5390
CVE-2018-5391
CVE-2019-11487
CVE-2019-12625
CVE-2019-12900
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15563
CVE-2020-15565
CVE-2020-15567
CVE-2020-15663
CVE-2020-15664
CVE-2020-15670
CVE-2020-15706
CVE-2020-15707
CVE-2020-1712
SUSE-SU-2017:3213-1
SUSE-SU-2018:3436-1
SUSE-SU-2018:3767-1
SUSE-SU-2018:3770-1
SUSE-SU-2019:2013-1
SUSE-SU-2019:3066-1
SUSE-SU-2020:0331-1
SUSE-SU-2020:1886-1
SUSE-SU-2020:2544-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • tar-1.29-lp150.1 is installed
  • OR tar-lang-1.29-lp150.1 is installed
  • OR tar-rmt-1.29-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND putty-0.72-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • MozillaFirefox-78.2.0-112.19 is installed
  • OR MozillaFirefox-devel-78.2.0-112.19 is installed
  • OR MozillaFirefox-translations-common-78.2.0-112.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libnm-glib-vpn1-1.0.12-12 is installed
  • OR libnm-glib4-1.0.12-12 is installed
  • OR libnm-util2-1.0.12-12 is installed
  • OR libnm0-1.0.12-12 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • res-signingkeys-3.0.37-52.23 is installed
  • OR smt-3.0.37-52.23 is installed
  • OR smt-support-3.0.37-52.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND dosfstools-3.0.26-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND mailman-2.1.17-3.23 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND clamav-0.100.3-33.26 is installed
    • BACK