Oval Definition:oval:org.opensuse.security:def:60896
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox to ESR 60.9 fixes the following issues:

Security issues fixed:

- CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. (bsc#1149303) - CVE-2019-11746: Fixed a use-after-free while manipulating video. (bsc#1149297) - CVE-2019-11744: Fixed an XSS caused by breaking out of title and textarea elements using innerHTML. (bsc#1149304) - CVE-2019-11753: Fixed a privilege escalation with Mozilla Maintenance Service in custom Firefox installation location. (bsc#1149295) - CVE-2019-11752: Fixed a use-after-free while extracting a key value in IndexedDB. (bsc#1149296) - CVE-2019-11743: Fixed a timing side-channel attack on cross-origin information, utilizing unload event attributes. (bsc#1149298) - CVE-2019-11740: Fixed several memory safety bugs. (bsc#1149299)
Family:unixClass:patch
Status:Reference(s):1008325
1010783
1021364
1026649
1026650
1029907
1029908
1029909
1030296
1030297
1030298
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1037052
1037057
1037061
1037066
1037273
1038984
1044891
1044897
1044901
1044909
1044925
1044927
1045735
1047356
1047785
1054088
1054671
1055920
1056277
1065643
1065689
1065693
1068640
1068643
1068887
1068888
1068950
1069176
1069202
1074741
1077745
1079103
1079741
1080556
1081527
1083528
1083532
1085784
1086608
1086784
1086786
1086788
1087820
1090997
1091015
1091365
1091368
1094204
1094237
1095730
1095812
1095813
1108813
1117505
1117507
1117508
1117511
1141780
1141782
1141783
1141785
1141789
1144903
1147021
1148987
1149294
1149295
1149296
1149297
1149298
1149299
1149303
1149304
1149324
1149332
1152856
1153108
1153158
1153161
1154212
1156402
1157888
1158003
1158004
1158005
1158006
1158007
1161181
1165784
1167152
1168140
1168142
1169392
1170170
1171352
1171878
1172085
1172205
1174157
1174633
1174635
1174638
1176013
1177943
CVE-2014-9939
CVE-2016-10165
CVE-2016-9396
CVE-2017-10928
CVE-2017-13758
CVE-2017-15938
CVE-2017-15939
CVE-2017-15996
CVE-2017-16826
CVE-2017-16827
CVE-2017-16828
CVE-2017-16829
CVE-2017-16830
CVE-2017-16831
CVE-2017-16832
CVE-2017-18271
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-7436
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8396
CVE-2017-8421
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2018-10372
CVE-2018-10373
CVE-2018-10534
CVE-2018-10535
CVE-2018-10804
CVE-2018-10805
CVE-2018-11251
CVE-2018-11655
CVE-2018-16435
CVE-2018-19539
CVE-2018-19540
CVE-2018-19541
CVE-2018-19542
CVE-2018-6323
CVE-2018-6543
CVE-2018-6759
CVE-2018-6872
CVE-2018-7208
CVE-2018-7568
CVE-2018-7569
CVE-2018-7570
CVE-2018-7642
CVE-2018-7643
CVE-2018-8945
CVE-2018-9133
CVE-2019-10220
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11753
CVE-2019-11771
CVE-2019-11775
CVE-2019-13627
CVE-2019-17133
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19583
CVE-2019-2201
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2816
CVE-2019-2894
CVE-2019-2933
CVE-2019-2945
CVE-2019-2949
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2987
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2999
CVE-2019-4473
CVE-2019-7317
CVE-2019-9812
CVE-2020-0543
CVE-2020-10029
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-12059
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14556
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-14779
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
CVE-2020-14798
CVE-2020-14803
CVE-2020-7211
SUSE-SU-2017:2344-1
SUSE-SU-2018:1851-1
SUSE-SU-2018:3545-1
SUSE-SU-2019:2436-1
SUSE-SU-2019:2972-1
SUSE-SU-2019:3084-1
SUSE-SU-2020:1158-1
SUSE-SU-2020:1630-1
SUSE-SU-2020:2331-1
SUSE-SU-2020:3024-1
SUSE-SU-2020:3191-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-buildsymbols-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-translations-common-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-translations-other-60.7.2-lp151.2.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-67.0.3575.97-lp151.2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libzypp-16.15.6-2.8 is installed
  • OR zypper-1.13.32-21.3 is installed
  • OR zypper-log-1.13.32-21.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1571412352.8da4d261f-3.13 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1571412352.8da4d261f-3.13 is installed
  • OR crowbar-openstack-6.0+git.1572264221.3826a58b8-3.13 is installed
  • OR grafana-6.2.5-3.9 is installed
  • OR openstack-cinder-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-api-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed
  • OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed
  • OR openstack-dashboard-14.0.5~dev1-3.9 is installed
  • OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed
  • OR openstack-keystone-14.1.1~dev26-3.13 is installed
  • OR openstack-manila-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-api-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-data-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed
  • OR openstack-manila-share-7.3.1~dev15-4.13 is installed
  • OR openstack-neutron-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed
  • OR openstack-neutron-server-13.0.6~dev3-3.13 is installed
  • OR openstack-nova-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-api-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-cells-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-compute-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-console-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed
  • OR openstack-octavia-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-amphora-image-0.1.1-7.3 is installed
  • OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed
  • OR openstack-octavia-api-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed
  • OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed
  • OR python-Django1-1.11.24-3.12 is installed
  • OR python-cinder-13.0.8~dev8-3.13 is installed
  • OR python-horizon-14.0.5~dev1-3.9 is installed
  • OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed
  • OR python-keystone-14.1.1~dev26-3.13 is installed
  • OR python-keystonemiddleware-5.2.1-11 is installed
  • OR python-manila-7.3.1~dev15-4.13 is installed
  • OR python-neutron-13.0.6~dev3-3.13 is installed
  • OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed
  • OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed
  • OR python-nova-18.2.4~dev18-3.13 is installed
  • OR python-octavia-3.2.1~dev1-3.13 is installed
  • OR python-octaviaclient-1.6.1-3.3 is installed
  • OR python-openstack_auth-14.0.5~dev1-3.9 is installed
  • OR python-os-brick-2.5.8-3.6 is installed
  • OR python-os-brick-common-2.5.8-3.6 is installed
  • OR python-oslo.cache-1.30.4-3.3 is installed
  • OR python-oslo.messaging-8.1.4-3.3 is installed
    • BACK