OVAL Reference oval:org.opensuse.security:def:60759

Oval Definition:

oval:org.opensuse.security:def:60759

Revision Date:	2020-12-01	Version:	1
Title:	Security update for MozillaFirefox (Moderate)
Description:	This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.2.0 ESR * Fixed: Various stability, functionality, and security fixes - Mozilla Firefox ESR 78.2 MFSA 2020-38 (bsc#1175686) * CVE-2020-15663 (bmo#1643199) Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege * CVE-2020-15664 (bmo#1658214) Attacker-induced prompt for extension installation * CVE-2020-15670 (bmo#1651001, bmo#1651449, bmo#1653626, bmo#1656957) Memory safety bugs fixed in Firefox 80 and Firefox ESR 78.2 - Fixed Firefox tab crash in FIPS mode (bsc#1174284). - Fix broken translation-loading. (bsc#1173991) * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more
Family:	unix	Class:	patch
Status:		Reference(s):	1013721 1013732 1017693 1054594 1084632 1086598 1087066 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1114837 1115717 1118987 1125330 1127987 1129821 1130262 1132549 1132664 1141322 1152107 1156402 1158527 1159819 1162197 1162200 1168994 1172798 1172846 1173659 1173798 1173812 1173942 1173972 1173991 1173998 1174205 1174247 1174284 1174463 1174570 1174753 1174757 1174771 1174817 1175112 1175127 1175168 1175228 1175686 1175691 1176069 990460 CVE-2016-10092 CVE-2016-10093 CVE-2016-10094 CVE-2016-6223 CVE-2016-9800 CVE-2016-9801 CVE-2017-12944 CVE-2018-11805 CVE-2018-16850 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-19210 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2018-8048 CVE-2019-11234 CVE-2019-11235 CVE-2019-11745 CVE-2019-16746 CVE-2019-17006 CVE-2019-2201 CVE-2019-5785 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-10713 CVE-2020-11668 CVE-2020-13753 CVE-2020-13844 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14314 CVE-2020-14331 CVE-2020-14386 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-15706 CVE-2020-15707 CVE-2020-16166 CVE-2020-1930 CVE-2020-1931 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 SUSE-SU-2018:1690-1 SUSE-SU-2019:0852-1 SUSE-SU-2019:1181-1 SUSE-SU-2019:2209-1 SUSE-SU-2019:2972-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:2069-1 SUSE-SU-2020:2079-1 SUSE-SU-2020:2544-1 SUSE-SU-2020:2582-1 SUSE-SU-2020:3263-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information xorg-x11-server-1.19.6-lp150.7.3 is installed OR xorg-x11-server-extra-1.19.6-lp150.7.3 is installed OR xorg-x11-server-sdk-1.19.6-lp150.7.3 is installed OR xorg-x11-server-source-1.19.6-lp150.7.3 is installed OR xorg-x11-server-wayland-1.19.6-lp150.7.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information python-Twisted-17.9.0-lp151.3.6 is installed OR python-Twisted-doc-17.9.0-lp151.3.6 is installed OR python2-Twisted-17.9.0-lp151.3.6 is installed OR python3-Twisted-17.9.0-lp151.3.6 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND cni-plugins-0.8.6-lp152.2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_116-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_31-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.130 is installed OR kernel-default-base-4.4.180-94.130 is installed OR kernel-default-devel-4.4.180-94.130 is installed OR kernel-default-kgraft-4.4.180-94.130 is installed OR kernel-default-man-4.4.180-94.130 is installed OR kernel-devel-4.4.180-94.130 is installed OR kernel-macros-4.4.180-94.130 is installed OR kernel-source-4.4.180-94.130 is installed OR kernel-syms-4.4.180-94.130 is installed OR kgraft-patch-4_4_180-94_130-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_35-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libecpg6-10.6-1.6 is installed OR libpq5-10.6-1.6 is installed OR libpq5-32bit-10.6-1.6 is installed OR postgresql10-10.6-1.6 is installed OR postgresql10-contrib-10.6-1.6 is installed OR postgresql10-docs-10.6-1.6 is installed OR postgresql10-libs-10.6-1.6 is installed OR postgresql10-server-10.6-1.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdk-pixbuf-lang-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed OR libwebkit2gtk3-lang-2.28.4-2.59 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-2.59 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed OR webkit2gtk3-2.28.4-2.59 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1566374020.301191f-3.7 is installed OR ardana-barbican-9.0+git.1566251498.be02ca4-3.7 is installed OR ardana-cinder-9.0+git.1565678764.c3a9b9f-3.7 is installed OR ardana-cluster-9.0+git.1559333871.40508f7-3.7 is installed OR ardana-cobbler-9.0+git.1566336494.93967dd-3.7 is installed OR ardana-db-9.0+git.1564409964.b7e4fc3-3.7 is installed OR ardana-designate-9.0+git.1565680593.df7a432-3.7 is installed OR ardana-extensions-nsx-9.0+git.1566213657.69862ab-8 is installed OR ardana-glance-9.0+git.1566375806.f0b2333-3.7 is installed OR ardana-heat-9.0+git.1565721273.f44b8d7-3.7 is installed OR ardana-horizon-9.0+git.1565891518.2a545a1-3.7 is installed OR ardana-input-model-9.0+git.1562848565.91e75b2-3.7 is installed OR ardana-installer-ui-9.0+git.1566255088.3443670-3.7 is installed OR ardana-ironic-9.0+git.1565721987.ddc59c8-3.7 is installed OR ardana-keystone-9.0+git.1565891593.cad6d1a-3.7 is installed OR ardana-logging-9.0+git.1565761582.2dc823a-3.7 is installed OR ardana-magnum-9.0+git.1565762005.016032a-3.7 is installed OR ardana-monasca-9.0+git.1566332665.ad894c0-3.7 is installed OR ardana-mq-9.0+git.1565115025.148d092-3.7 is installed OR ardana-neutron-9.0+git.1566251310.3a1e8f9-3.7 is installed OR ardana-nova-9.0+git.1566332515.e232568-3.7 is installed OR ardana-octavia-9.0+git.1566206502.6c87b41-3.7 is installed OR ardana-opsconsole-9.0+git.1566251377.b1caeaa-3.7 is installed OR ardana-opsconsole-ui-9.0+git.1555530925.206f1a8-4.7 is installed OR ardana-osconfig-9.0+git.1565764394.545b573-3.7 is installed OR ardana-service-9.0+git.1564706915.edd44c4-3.7 is installed OR ardana-ses-9.0+git.1565962617.523149b-3.7 is installed OR ardana-swift-9.0+git.1565891872.73fc3c7-3.7 is installed OR ardana-swiftlm-drive-provision-9.0+git.1541434883.e0ebe69-8 is installed OR ardana-swiftlm-log-tailer-9.0+git.1541434883.e0ebe69-8 is installed OR ardana-swiftlm-uptime-mon-9.0+git.1541434883.e0ebe69-8 is installed OR ardana-tempest-9.0+git.1566471752.a3c5c9c-3.7 is installed OR openstack-ceilometer-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-central-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-polling-11.0.2~dev14-3.7 is installed OR openstack-cinder-13.0.7~dev3-3.7 is installed OR openstack-cinder-api-13.0.7~dev3-3.7 is installed OR openstack-cinder-backup-13.0.7~dev3-3.7 is installed OR openstack-cinder-scheduler-13.0.7~dev3-3.7 is installed OR openstack-cinder-volume-13.0.7~dev3-3.7 is installed OR openstack-designate-7.0.1~dev21-3.7 is installed OR openstack-designate-agent-7.0.1~dev21-3.7 is installed OR openstack-designate-api-7.0.1~dev21-3.7 is installed OR openstack-designate-central-7.0.1~dev21-3.7 is installed OR openstack-designate-producer-7.0.1~dev21-3.7 is installed OR openstack-designate-sink-7.0.1~dev21-3.7 is installed OR openstack-designate-worker-7.0.1~dev21-3.7 is installed OR openstack-heat-11.0.3~dev19-3.7 is installed OR openstack-heat-api-11.0.3~dev19-3.7 is installed OR openstack-heat-api-cfn-11.0.3~dev19-3.7 is installed OR openstack-heat-engine-11.0.3~dev19-3.7 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev19-3.7 is installed OR openstack-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed OR openstack-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed OR openstack-ironic-11.1.4~dev9-3.7 is installed OR openstack-ironic-api-11.1.4~dev9-3.7 is installed OR openstack-ironic-conductor-11.1.4~dev9-3.7 is installed OR openstack-ironic-python-agent-3.3.3~dev4-3.7 is installed OR openstack-keystone-14.1.1~dev8-3.7 is installed OR openstack-magnum-7.1.1~dev28-3.7 is installed OR openstack-magnum-api-7.1.1~dev28-3.7 is installed OR openstack-magnum-conductor-7.1.1~dev28-3.7 is installed OR openstack-manila-7.3.1~dev3-4.7 is installed OR openstack-manila-api-7.3.1~dev3-4.7 is installed OR openstack-manila-data-7.3.1~dev3-4.7 is installed OR openstack-manila-scheduler-7.3.1~dev3-4.7 is installed OR openstack-manila-share-7.3.1~dev3-4.7 is installed OR openstack-monasca-notification-1.14.2~dev1-6.7 is installed OR openstack-monasca-persister-1.12.1~dev9-9 is installed OR openstack-monasca-persister-java-1.12.1~dev9-9 is installed OR openstack-neutron-13.0.5~dev22-3.7 is installed OR openstack-neutron-dhcp-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-gbp-5.0.1~dev459-3.7 is installed OR openstack-neutron-ha-tool-13.0.5~dev22-3.7 is installed OR openstack-neutron-l3-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-lbaas-13.0.1~dev14-3.7 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev14-3.7 is installed OR openstack-neutron-linuxbridge-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-macvtap-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-metadata-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-metering-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-openvswitch-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-server-13.0.5~dev22-3.7 is installed OR openstack-nova-18.2.2~dev9-3.7 is installed OR openstack-nova-api-18.2.2~dev9-3.7 is installed OR openstack-nova-cells-18.2.2~dev9-3.7 is installed OR openstack-nova-compute-18.2.2~dev9-3.7 is installed OR openstack-nova-conductor-18.2.2~dev9-3.7 is installed OR openstack-nova-console-18.2.2~dev9-3.7 is installed OR openstack-nova-novncproxy-18.2.2~dev9-3.7 is installed OR openstack-nova-placement-api-18.2.2~dev9-3.7 is installed OR openstack-nova-scheduler-18.2.2~dev9-3.7 is installed OR openstack-nova-serialproxy-18.2.2~dev9-3.7 is installed OR openstack-nova-vncproxy-18.2.2~dev9-3.7 is installed OR openstack-octavia-3.1.2~dev8-3.7 is installed OR openstack-octavia-amphora-agent-3.1.2~dev8-3.7 is installed OR openstack-octavia-api-3.1.2~dev8-3.7 is installed OR openstack-octavia-health-manager-3.1.2~dev8-3.7 is installed OR openstack-octavia-housekeeping-3.1.2~dev8-3.7 is installed OR openstack-octavia-worker-3.1.2~dev8-3.7 is installed OR openstack-tempest-19.0.0-12 is installed OR openstack-tempest-test-19.0.0-12 is installed OR python-ardana-configurationprocessor-9.0+git.1566405927.c5c03d4-3.8 is installed OR python-ceilometer-11.0.2~dev14-3.7 is installed OR python-cinder-13.0.7~dev3-3.7 is installed OR python-cinder-tempest-plugin-0.1.0-8 is installed OR python-designate-7.0.1~dev21-3.7 is installed OR python-heat-11.0.3~dev19-3.7 is installed OR python-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed OR python-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed OR python-ironic-11.1.4~dev9-3.7 is installed OR python-ironicclient-2.5.3-4.7 is installed OR python-ironicclient-doc-2.5.3-4.7 is installed OR python-keystone-14.1.1~dev8-3.7 is installed OR python-keystonemiddleware-5.2.0-8 is installed OR python-magnum-7.1.1~dev28-3.7 is installed OR python-manila-7.3.1~dev3-4.7 is installed OR python-monasca-notification-1.14.2~dev1-6.7 is installed OR python-monasca-persister-1.12.1~dev9-9 is installed OR python-monasca-tempest-plugin-0.3.0-8 is installed OR python-neutron-13.0.5~dev22-3.7 is installed OR python-neutron-gbp-5.0.1~dev459-3.7 is installed OR python-neutron-lbaas-13.0.1~dev14-3.7 is installed OR python-nova-18.2.2~dev9-3.7 is installed OR python-octavia-3.1.2~dev8-3.7 is installed OR python-openstackclient-3.16.2-8 is installed OR python-openstacksdk-0.17.3-8 is installed OR python-proliantutils-2.8.4-8 is installed OR python-python-engineio-2.0.2-9 is installed OR python-swiftlm-9.0+git.1541434883.e0ebe69-8 is installed OR python-tempest-19.0.0-12 is installed OR python-vmware-nsx-13.0.1~dev146-9 is installed OR python-vmware-nsxlib-13.0.1~dev24-8 is installed OR venv-openstack-barbican-7.0.1~dev18-3.7 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.7 is installed OR venv-openstack-cinder-13.0.7~dev3-3.7 is installed OR venv-openstack-cinder-x86_64-13.0.7~dev3-3.7 is installed OR venv-openstack-designate-7.0.1~dev21-3.7 is installed OR venv-openstack-designate-x86_64-7.0.1~dev21-3.7 is installed OR venv-openstack-glance-17.0.1~dev16-3.7 is installed OR venv-openstack-glance-x86_64-17.0.1~dev16-3.7 is installed OR venv-openstack-heat-11.0.3~dev19-3.7 is installed OR venv-openstack-heat-x86_64-11.0.3~dev19-3.7 is installed OR venv-openstack-horizon-14.0.4~dev4-4.7 is installed OR venv-openstack-horizon-x86_64-14.0.4~dev4-4.7 is installed OR venv-openstack-ironic-11.1.4~dev9-4.7 is installed OR venv-openstack-ironic-x86_64-11.1.4~dev9-4.7 is installed OR venv-openstack-keystone-14.1.1~dev8-3.7 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev8-3.7 is installed OR venv-openstack-magnum-7.1.1~dev28-4.7 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.7 is installed OR venv-openstack-manila-7.3.1~dev3-3.7 is installed OR venv-openstack-manila-x86_64-7.3.1~dev3-3.7 is installed OR venv-openstack-monasca-2.7.1~dev10-3.7 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.7 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.7 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.7 is installed OR venv-openstack-neutron-13.0.5~dev22-6.7 is installed OR venv-openstack-neutron-x86_64-13.0.5~dev22-6.7 is installed OR venv-openstack-nova-18.2.2~dev9-3.7 is installed OR venv-openstack-nova-x86_64-18.2.2~dev9-3.7 is installed OR venv-openstack-octavia-3.1.2~dev8-4.7 is installed OR venv-openstack-octavia-x86_64-3.1.2~dev8-4.7 is installed OR venv-openstack-sahara-9.0.2~dev9-3.7 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev9-3.7 is installed OR venv-openstack-swift-2.19.2~dev1-2.4 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.4 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.9 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.6 is installed OR rubygem-actionview-4_2-4.2.9-9.9 is installed OR rubygem-activesupport-4_2-4.2.9-7.6 is installed

BACK