OVAL Reference oval:org.opensuse.security:def:59834

Oval Definition:

oval:org.opensuse.security:def:59834

Revision Date:	2021-12-12	Version:	1
Title:	Security update for MozillaFirefox (Important)
Description:	This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1020645 1020989 1023711 1027519 1031492 1047487 1051510 1053043 1062056 1063638 1066223 1068032 1070872 1078216 1085295 1085297 1085539 1085583 1085584 1085585 1085589 1086162 1087092 1087659 1091396 1093777 1094120 1094244 1096480 1096728 1097104 1099590 1100132 1103186 1105010 1105348 1106110 1106913 1106929 1107937 1111331 1112178 1113399 1114542 1114638 1114648 1114893 1118338 1118506 1119086 1120095 1120644 1120902 1122191 1122822 1123755 1124223 1125580 1126356 1127153 1127445 1129278 1129326 1129770 1130103 1130130 1130343 1130344 1130345 1130346 1130347 1130356 1130425 1130567 1130680 1130737 1131060 1131107 1131416 1131427 1131587 1131659 1131857 1131900 1131934 1131935 1131980 1132227 1132534 1132589 1132618 1132619 1132634 1132635 1132636 1132637 1132638 1132727 1132828 1133308 1133528 1133584 1139959 1140122 1145559 1155787 1163985 1167068 1170558 1171363 1173902 1173994 1174120 1174316 1176579 1193321 1193485 682920 964336 994770 997935 CVE-2006-0855 CVE-2007-1669 CVE-2014-3430 CVE-2016-4983 CVE-2017-18233 CVE-2017-18234 CVE-2017-18236 CVE-2017-18238 CVE-2017-2518 CVE-2017-2669 CVE-2017-5753 CVE-2018-1000204 CVE-2018-10853 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-15473 CVE-2018-15594 CVE-2018-20406 CVE-2018-20815 CVE-2018-5814 CVE-2018-7728 CVE-2018-7730 CVE-2018-8822 CVE-2019-11091 CVE-2019-11500 CVE-2019-13012 CVE-2019-3859 CVE-2019-3880 CVE-2019-3882 CVE-2019-5010 CVE-2019-9503 CVE-2020-12108 CVE-2020-12137 CVE-2020-14318 CVE-2020-14323 CVE-2020-1472 CVE-2020-1720 CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 SUSE-SU-2018:3389-1 SUSE-SU-2019:1037-1 SUSE-SU-2019:2454-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:2721-1 SUSE-SU-2021:4000-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND hardlink-1.0+git.e66999f-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information apache2-mod_php7-7.2.5-lp151.6.6 is installed OR php7-7.2.5-lp151.6.6 is installed OR php7-bcmath-7.2.5-lp151.6.6 is installed OR php7-bz2-7.2.5-lp151.6.6 is installed OR php7-calendar-7.2.5-lp151.6.6 is installed OR php7-ctype-7.2.5-lp151.6.6 is installed OR php7-curl-7.2.5-lp151.6.6 is installed OR php7-dba-7.2.5-lp151.6.6 is installed OR php7-devel-7.2.5-lp151.6.6 is installed OR php7-dom-7.2.5-lp151.6.6 is installed OR php7-embed-7.2.5-lp151.6.6 is installed OR php7-enchant-7.2.5-lp151.6.6 is installed OR php7-exif-7.2.5-lp151.6.6 is installed OR php7-fastcgi-7.2.5-lp151.6.6 is installed OR php7-fileinfo-7.2.5-lp151.6.6 is installed OR php7-firebird-7.2.5-lp151.6.6 is installed OR php7-fpm-7.2.5-lp151.6.6 is installed OR php7-ftp-7.2.5-lp151.6.6 is installed OR php7-gd-7.2.5-lp151.6.6 is installed OR php7-gettext-7.2.5-lp151.6.6 is installed OR php7-gmp-7.2.5-lp151.6.6 is installed OR php7-iconv-7.2.5-lp151.6.6 is installed OR php7-intl-7.2.5-lp151.6.6 is installed OR php7-json-7.2.5-lp151.6.6 is installed OR php7-ldap-7.2.5-lp151.6.6 is installed OR php7-mbstring-7.2.5-lp151.6.6 is installed OR php7-mysql-7.2.5-lp151.6.6 is installed OR php7-odbc-7.2.5-lp151.6.6 is installed OR php7-opcache-7.2.5-lp151.6.6 is installed OR php7-openssl-7.2.5-lp151.6.6 is installed OR php7-pcntl-7.2.5-lp151.6.6 is installed OR php7-pdo-7.2.5-lp151.6.6 is installed OR php7-pear-7.2.5-lp151.6.6 is installed OR php7-pear-Archive_Tar-7.2.5-lp151.6.6 is installed OR php7-pgsql-7.2.5-lp151.6.6 is installed OR php7-phar-7.2.5-lp151.6.6 is installed OR php7-posix-7.2.5-lp151.6.6 is installed OR php7-readline-7.2.5-lp151.6.6 is installed OR php7-shmop-7.2.5-lp151.6.6 is installed OR php7-snmp-7.2.5-lp151.6.6 is installed OR php7-soap-7.2.5-lp151.6.6 is installed OR php7-sockets-7.2.5-lp151.6.6 is installed OR php7-sodium-7.2.5-lp151.6.6 is installed OR php7-sqlite-7.2.5-lp151.6.6 is installed OR php7-sysvmsg-7.2.5-lp151.6.6 is installed OR php7-sysvsem-7.2.5-lp151.6.6 is installed OR php7-sysvshm-7.2.5-lp151.6.6 is installed OR php7-testresults-7.2.5-lp151.6.6 is installed OR php7-tidy-7.2.5-lp151.6.6 is installed OR php7-tokenizer-7.2.5-lp151.6.6 is installed OR php7-wddx-7.2.5-lp151.6.6 is installed OR php7-xmlreader-7.2.5-lp151.6.6 is installed OR php7-xmlrpc-7.2.5-lp151.6.6 is installed OR php7-xmlwriter-7.2.5-lp151.6.6 is installed OR php7-xsl-7.2.5-lp151.6.6 is installed OR php7-zip-7.2.5-lp151.6.6 is installed OR php7-zlib-7.2.5-lp151.6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openssh-7.2p2-74.30 is installed OR openssh-askpass-gnome-7.2p2-74.30 is installed OR openssh-fips-7.2p2-74.30 is installed OR openssh-helpers-7.2p2-74.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dovecot22-2.2.30.2-14 is installed OR dovecot22-backend-mysql-2.2.30.2-14 is installed OR dovecot22-backend-pgsql-2.2.30.2-14 is installed OR dovecot22-backend-sqlite-2.2.30.2-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libX11-1.6.2-12.8 is installed OR libX11-6-1.6.2-12.8 is installed OR libX11-6-32bit-1.6.2-12.8 is installed OR libX11-data-1.6.2-12.8 is installed OR libX11-xcb1-1.6.2-12.8 is installed OR libX11-xcb1-32bit-1.6.2-12.8 is installed OR libxcb-1.10-4.5 is installed OR libxcb-dri2-0-1.10-4.5 is installed OR libxcb-dri2-0-32bit-1.10-4.5 is installed OR libxcb-dri3-0-1.10-4.5 is installed OR libxcb-dri3-0-32bit-1.10-4.5 is installed OR libxcb-glx0-1.10-4.5 is installed OR libxcb-glx0-32bit-1.10-4.5 is installed OR libxcb-present0-1.10-4.5 is installed OR libxcb-present0-32bit-1.10-4.5 is installed OR libxcb-randr0-1.10-4.5 is installed OR libxcb-render0-1.10-4.5 is installed OR libxcb-render0-32bit-1.10-4.5 is installed OR libxcb-shape0-1.10-4.5 is installed OR libxcb-shm0-1.10-4.5 is installed OR libxcb-shm0-32bit-1.10-4.5 is installed OR libxcb-sync1-1.10-4.5 is installed OR libxcb-sync1-32bit-1.10-4.5 is installed OR libxcb-xf86dri0-1.10-4.5 is installed OR libxcb-xfixes0-1.10-4.5 is installed OR libxcb-xfixes0-32bit-1.10-4.5 is installed OR libxcb-xinerama0-1.10-4.5 is installed OR libxcb-xkb1-1.10-4.5 is installed OR libxcb-xkb1-32bit-1.10-4.5 is installed OR libxcb-xv0-1.10-4.5 is installed OR libxcb1-1.10-4.5 is installed OR libxcb1-32bit-1.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.58 is installed OR libgcrypt20-1.6.1-16.58 is installed OR libgcrypt20-32bit-1.6.1-16.58 is installed OR libgcrypt20-hmac-1.6.1-16.58 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-91.4.0-112.83.1 is installed OR MozillaFirefox-devel-91.4.0-112.83.1 is installed OR MozillaFirefox-translations-common-91.4.0-112.83.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libdcerpc-binding0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libdcerpc-binding0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libdcerpc0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libdcerpc0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-krb5pac0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-krb5pac0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-nbt0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-nbt0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-standard0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr-standard0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libndr0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libnetapi0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libnetapi0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-credentials0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-credentials0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-errors0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-errors0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-hostconfig0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-passdb0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-passdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-util0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamba-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamdb0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsamdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbconf0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbconf0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbldap0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libsmbldap0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libtevent-util0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libtevent-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR libwbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed OR libwbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-client-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-client-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-doc-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-libs-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-libs-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-winbind-4.6.16+git.237.40a3f495f75-3.55 is installed OR samba-winbind-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed

BACK