Oval Definition:	oval:org.opensuse.security:def:60648
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox to 68.2.0 ESR fixes the following issues: Mozilla Firefox was updated to version 68.2.0 ESR (bsc#1154738). Security issues fixed: - CVE-2019-15903: Fixed a heap overflow in the expat library (bsc#1149429). - CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB (bsc#1154738). - CVE-2019-11758: Fixed a potentially exploitable crash due to 360 Total Security (bsc#1154738). - CVE-2019-11759: Fixed a stack buffer overflow in HKDF output (bsc#1154738). - CVE-2019-11760: Fixed a stack buffer overflow in WebRTC networking (bsc#1154738). - CVE-2019-11761: Fixed an unintended access to a privileged JSONView object (bsc#1154738). - CVE-2019-11762: Fixed a same-origin-property violation (bsc#1154738). - CVE-2019-11763: Fixed an XSS bypass (bsc#1154738). - CVE-2019-11764: Fixed several memory safety bugs (bsc#1154738). Non-security issues fixed: - Firefox 60.7 ESR changed the user interface language (bsc#1137990). - Wrong Firefox GUI Language (bsc#1120374). - Fixed an inadvertent crash report transmission without user opt-in (bsc#1074235). - Firefox hangs randomly when browsing and scrolling (bsc#1043008). - Firefox stops loading page until mouse is moved (bsc#1025108). Family: unix Class: patch Status: Reference(s): 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1022805 1025108 1043008 1047281 1050082 1061066 1065641 1068612 1074235 1077330 1079798 1079799 1079800 1079801 1087018 1088004 1088009 1092420 1092611 1094290 1094291 1096405 1096406 1096407 1096408 1107190 1108719 1118987 1120374 1123872 1126503 1128481 1130840 1131493 1136570 1137832 1137990 1140738 1141329 1141332 1141853 1141968 11483483 1148383 1149429 1149496 1149955 1152856 1153191 1153238 1154212 1154738 1156525 1159046 1160152 1160153 1160192 1160790 1160851 1161088 1161089 1161670 1162197 1162200 1162423 1164322 1167244 1168422 1168593 1169740 1169770 1170657 1171273 1171355 1171560 1171594 1171661 1171909 1172166 1172167 1172175 1172176 1172409 1172651 1173274 1173334 1174091 1174701 959933 983922 CVE-2016-2399 CVE-2016-2830 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-1000246 CVE-2017-16227 CVE-2017-18248 CVE-2017-7789 CVE-2018-0739 CVE-2018-11805 CVE-2018-14647 CVE-2018-20852 CVE-2018-4180 CVE-2018-4181 CVE-2018-4182 CVE-2018-4183 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5378 CVE-2018-5379 CVE-2018-5380 CVE-2018-5381 CVE-2018-8956 CVE-2019-1010083 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12525 CVE-2019-12529 CVE-2019-12749 CVE-2019-13345 CVE-2019-15043 CVE-2019-15903 CVE-2019-16056 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-16865 CVE-2019-16935 CVE-2019-18874 CVE-2019-19911 CVE-2019-20907 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3828 CVE-2019-3860 CVE-2019-5482 CVE-2019-5953 CVE-2019-9947 CVE-2020-10663 CVE-2020-10743 CVE-2020-11076 CVE-2020-11077 CVE-2020-11868 CVE-2020-12052 CVE-2020-13254 CVE-2020-13379 CVE-2020-13596 CVE-2020-13817 CVE-2020-14422 CVE-2020-15025 CVE-2020-1930 CVE-2020-1931 CVE-2020-3898 CVE-2020-5312 CVE-2020-5313 CVE-2020-5390 CVE-2020-8151 SUSE-SU-2017:1986-1 SUSE-SU-2018:0456-1 SUSE-SU-2019:0956-1 SUSE-SU-2019:1606-2 SUSE-SU-2019:2089-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:2820-2 SUSE-SU-2019:2872-1 SUSE-SU-2020:1045-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:1901-1 SUSE-SU-2020:2699-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information xen-4.10.1_08-lp150.2.9 is installed OR xen-devel-4.10.1_08-lp150.2.9 is installed OR xen-doc-html-4.10.1_08-lp150.2.9 is installed OR xen-libs-4.10.1_08-lp150.2.9 is installed OR xen-libs-32bit-4.10.1_08-lp150.2.9 is installed OR xen-tools-4.10.1_08-lp150.2.9 is installed OR xen-tools-domU-4.10.1_08-lp150.2.9 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information bind-9.11.2-lp151.11.3 is installed OR bind-chrootenv-9.11.2-lp151.11.3 is installed OR bind-devel-9.11.2-lp151.11.3 is installed OR bind-devel-32bit-9.11.2-lp151.11.3 is installed OR bind-doc-9.11.2-lp151.11.3 is installed OR bind-lwresd-9.11.2-lp151.11.3 is installed OR bind-utils-9.11.2-lp151.11.3 is installed OR libbind9-160-9.11.2-lp151.11.3 is installed OR libbind9-160-32bit-9.11.2-lp151.11.3 is installed OR libdns169-9.11.2-lp151.11.3 is installed OR libdns169-32bit-9.11.2-lp151.11.3 is installed OR libirs-devel-9.11.2-lp151.11.3 is installed OR libirs160-9.11.2-lp151.11.3 is installed OR libirs160-32bit-9.11.2-lp151.11.3 is installed OR libisc166-9.11.2-lp151.11.3 is installed OR libisc166-32bit-9.11.2-lp151.11.3 is installed OR libisccc160-9.11.2-lp151.11.3 is installed OR libisccc160-32bit-9.11.2-lp151.11.3 is installed OR libisccfg160-9.11.2-lp151.11.3 is installed OR libisccfg160-32bit-9.11.2-lp151.11.3 is installed OR liblwres160-9.11.2-lp151.11.3 is installed OR liblwres160-32bit-9.11.2-lp151.11.3 is installed OR python3-bind-9.11.2-lp151.11.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information ghostscript-9.52-lp152.2.4 is installed OR ghostscript-devel-9.52-lp152.2.4 is installed OR ghostscript-mini-9.52-lp152.2.4 is installed OR ghostscript-mini-devel-9.52-lp152.2.4 is installed OR ghostscript-x11-9.52-lp152.2.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libquicktime-1.2.4-14.3 is installed OR libquicktime0-1.2.4-14.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.32-3.28 is installed OR mariadb-galera-10.2.32-3.28 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
BACK