Oval Definition:oval:org.opensuse.security:def:60670
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

Mozilla Firefox was updated to 68.3esr (MFSA 2019-37 bsc#1158328) Security issues fixed:

- CVE-2019-17008: Fixed a use-after-free in worker destruction (bmo#1546331) - CVE-2019-13722: Fixed a stack corruption due to incorrect number of arguments in WebRTC code (bmo#1580156) - CVE-2019-11745: Fixed an out of bounds write in NSS when encrypting with a block cipher (bmo#1586176) - CVE-2019-17009: Fixed an issue where updater temporary files accessible to unprivileged processes (bmo#1510494) - CVE-2019-17010: Fixed a use-after-free when performing device orientation checks (bmo#1581084) - CVE-2019-17005: Fixed a buffer overflow in plain text serializer (bmo#1584170) - CVE-2019-17011: Fixed a use-after-free when retrieving a document in antitracking (bmo#1591334) - CVE-2019-17012: Fixed multiple memmory issues (bmo#1449736, bmo#1533957, bmo#1560667,bmo#1567209, bmo#1580288, bmo#1585760, bmo#1592502)
Family:unixClass:patch
Status:Reference(s):1009745
1036659
1038984
1043218
1045735
1046417
1047785
1048315
1077330
1078431
1094290
1094291
1101295
1104448
1123156
1145604
1146873
1149811
1150011
1151021
1155089
1158328
1160024
1161066
1163018
1163019
1165643
1166240
1167068
1170558
1170603
1170940
1171363
1172745
1172798
1172846
1173972
1174421
1174543
1174753
1174817
1175168
682920
CVE-2017-1002201
CVE-2017-18379
CVE-2017-7435
CVE-2017-7436
CVE-2017-9269
CVE-2018-0739
CVE-2018-10873
CVE-2018-10893
CVE-2018-2562
CVE-2018-2612
CVE-2018-2622
CVE-2018-2640
CVE-2018-2665
CVE-2018-2668
CVE-2019-11745
CVE-2019-12068
CVE-2019-13722
CVE-2019-14822
CVE-2019-14835
CVE-2019-15890
CVE-2019-17005
CVE-2019-17008
CVE-2019-17009
CVE-2019-17010
CVE-2019-17011
CVE-2019-17012
CVE-2019-6778
CVE-2020-12108
CVE-2020-12137
CVE-2020-12268
CVE-2020-13844
CVE-2020-15705
CVE-2020-1711
CVE-2020-1983
CVE-2020-7039
CVE-2020-8608
CVE-2020-9543
SUSE-SU-2017:2264-1
SUSE-SU-2018:0697-1
SUSE-SU-2019:2389-1
SUSE-SU-2019:2932-1
SUSE-SU-2019:3347-1
SUSE-SU-2020:0660-1
SUSE-SU-2020:1301-1
SUSE-SU-2020:1538-1
SUSE-SU-2020:2171-1
SUSE-SU-2020:2304-1
SUSE-SU-2020:3263-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • qemu-2.11.2-lp150.7.9 is installed
  • OR qemu-arm-2.11.2-lp150.7.9 is installed
  • OR qemu-block-curl-2.11.2-lp150.7.9 is installed
  • OR qemu-block-dmg-2.11.2-lp150.7.9 is installed
  • OR qemu-block-gluster-2.11.2-lp150.7.9 is installed
  • OR qemu-block-iscsi-2.11.2-lp150.7.9 is installed
  • OR qemu-block-rbd-2.11.2-lp150.7.9 is installed
  • OR qemu-block-ssh-2.11.2-lp150.7.9 is installed
  • OR qemu-extra-2.11.2-lp150.7.9 is installed
  • OR qemu-guest-agent-2.11.2-lp150.7.9 is installed
  • OR qemu-ipxe-1.0.0-lp150.7.9 is installed
  • OR qemu-ksm-2.11.2-lp150.7.9 is installed
  • OR qemu-kvm-2.11.2-lp150.7.9 is installed
  • OR qemu-lang-2.11.2-lp150.7.9 is installed
  • OR qemu-linux-user-2.11.2-lp150.7.9 is installed
  • OR qemu-ppc-2.11.2-lp150.7.9 is installed
  • OR qemu-s390-2.11.2-lp150.7.9 is installed
  • OR qemu-seabios-1.11.0-lp150.7.9 is installed
  • OR qemu-sgabios-8-lp150.7.9 is installed
  • OR qemu-testsuite-2.11.2-lp150.7.9 is installed
  • OR qemu-tools-2.11.2-lp150.7.9 is installed
  • OR qemu-vgabios-1.11.0-lp150.7.9 is installed
  • OR qemu-x86-2.11.2-lp150.7.9 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-75.0.3770.90-2 is installed
  • OR chromium-75.0.3770.90-2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • libecpg6-12.4-lp152.3.7 is installed
  • OR libecpg6-32bit-12.4-lp152.3.7 is installed
  • OR libpq5-12.4-lp152.3.7 is installed
  • OR libpq5-32bit-12.4-lp152.3.7 is installed
  • OR postgresql12-12.4-lp152.3.7 is installed
  • OR postgresql12-contrib-12.4-lp152.3.7 is installed
  • OR postgresql12-devel-12.4-lp152.3.7 is installed
  • OR postgresql12-docs-12.4-lp152.3.7 is installed
  • OR postgresql12-llvmjit-12.4-lp152.3.7 is installed
  • OR postgresql12-plperl-12.4-lp152.3.7 is installed
  • OR postgresql12-plpython-12.4-lp152.3.7 is installed
  • OR postgresql12-pltcl-12.4-lp152.3.7 is installed
  • OR postgresql12-server-12.4-lp152.3.7 is installed
  • OR postgresql12-server-devel-12.4-lp152.3.7 is installed
  • OR postgresql12-test-12.4-lp152.3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libzypp-16.15.3-2.3 is installed
  • OR yast2-pkg-bindings-3.2.4-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • ghostscript-9.52-23.34 is installed
  • OR ghostscript-x11-9.52-23.34 is installed
  • OR libspectre-0.2.7-12.10 is installed
  • OR libspectre1-0.2.7-12.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed
  • OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed
  • OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND chrony-2.3-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-68.3.0-109.98 is installed
  • OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • xen-4.11.4_04-2.30 is installed
  • OR xen-doc-html-4.11.4_04-2.30 is installed
  • OR xen-libs-4.11.4_04-2.30 is installed
  • OR xen-libs-32bit-4.11.4_04-2.30 is installed
  • OR xen-tools-4.11.4_04-2.30 is installed
  • OR xen-tools-domU-4.11.4_04-2.30 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-haml-4.0.6-3.3 is installed
  • OR rubygem-haml-4.0.6-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • BACK