Oval Definition:	oval:org.opensuse.security:def:60807
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.5.0 ESR * CVE-2020-6796 (bmo#1610426) Missing bounds check on shared memory read in the parent process * CVE-2020-6797 (bmo#1596668) Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 (bmo#1602944) Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6799 (bmo#1606596) Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543, bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 * Fixed: Fixed various issues opening files with spaces in their path (bmo#1601905, bmo#1602726) Family: unix Class: patch Status: Reference(s): 1024288 1024291 1049825 1058425 1059809 1059811 1086777 1093414 1104129 1109893 1110542 1111319 1111331 1112911 1113296 1116995 1118597 1118987 1120629 1120630 1120631 1126068 1126069 1127155 1129346 1130246 1130847 1131823 1133185 1134226 1136936 1137977 1140039 1145521 1150734 1156323 1156324 1156326 1156328 1156329 1157198 1159646 1159856 1159858 1159860 1160250 1160251 1160937 1161167 1161799 1162197 1162200 1162687 1162689 1162691 1172402 1177158 CVE-2017-14482 CVE-2017-14632 CVE-2017-14633 CVE-2017-2579 CVE-2017-2580 CVE-2018-11805 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-19870 CVE-2018-19872 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2018-8975 CVE-2019-11091 CVE-2019-12523 CVE-2019-12526 CVE-2019-12528 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-17571 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-3688 CVE-2019-3690 CVE-2019-6465 CVE-2019-9636 CVE-2019-9948 CVE-2020-0569 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-14355 CVE-2020-1930 CVE-2020-1931 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 SUSE-SU-2017:2529-1 SUSE-SU-2018:0015-1 SUSE-SU-2019:1645-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:3180-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:0317-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:3085-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information calamares-3.2.15-lp151.4.3 is installed OR calamares-branding-upstream-3.2.15-lp151.4.3 is installed OR calamares-webview-3.2.15-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information xorg-x11-server-1.20.3-lp152.8.3 is installed OR xorg-x11-server-extra-1.20.3-lp152.8.3 is installed OR xorg-x11-server-sdk-1.20.3-lp152.8.3 is installed OR xorg-x11-server-source-1.20.3-lp152.8.3 is installed OR xorg-x11-server-wayland-1.20.3-lp152.8.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-el-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-nox-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libQt5Concurrent5-5.6.2-6.22 is installed OR libQt5Core5-5.6.2-6.22 is installed OR libQt5DBus5-5.6.2-6.22 is installed OR libQt5Gui5-5.6.2-6.22 is installed OR libQt5Network5-5.6.2-6.22 is installed OR libQt5OpenGL5-5.6.2-6.22 is installed OR libQt5PrintSupport5-5.6.2-6.22 is installed OR libQt5Sql5-5.6.2-6.22 is installed OR libQt5Sql5-mysql-5.6.2-6.22 is installed OR libQt5Sql5-postgresql-5.6.2-6.22 is installed OR libQt5Sql5-sqlite-5.6.2-6.22 is installed OR libQt5Sql5-unixODBC-5.6.2-6.22 is installed OR libQt5Test5-5.6.2-6.22 is installed OR libQt5Widgets5-5.6.2-6.22 is installed OR libQt5Xml5-5.6.2-6.22 is installed OR libqt5-qtbase-5.6.2-6.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20190507-13.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.5.0-109.106 is installed OR MozillaFirefox-translations-common-68.5.0-109.106 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-requests-2.20.1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
BACK