OVAL Reference oval:org.opensuse.security:def:60988

Oval Definition:

oval:org.opensuse.security:def:60988

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Important)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53.1 - CVE-2020-12402: Fixed a potential side channel attack during RSA key generation (bsc#1173032). - CVE-2020-12399: Fixed a timing attack on DSA signature generation (bsc#1171978). - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - Fixed various FIPS issues in libfreebl3 which were causing segfaults in the test suite of chrony (bsc#1168669). - Fixed an issue where Firefox tab was crashing (bsc#1170908). Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes mozilla-nspr to version 4.25
Family:	unix	Class:	patch
Status:		Reference(s):	1005778 1005780 1005781 1012382 1017967 1027519 1039616 1040621 1047487 1050129 1055695 1056278 1056280 1056281 1056282 1056865 1057358 1063043 1064311 1065180 1068032 1068951 1070116 1071009 1072166 1072216 1072556 1072866 1072890 1072962 1073090 1073525 1073792 1073809 1073868 1073874 1073912 1091236 1105435 1105592 1106989 1107604 1107609 1107612 1107616 1107619 1108282 1108283 1128471 1128472 1128474 1128476 1128480 1128481 1128490 1128492 1128493 1129537 1131493 1153674 1154212 1158442 1159819 1167890 1168669 1168930 1169746 1170908 1171252 1171254 1171978 1173022 1173455 1175194 1177158 1178666 1178667 1178668 963897 964063 966170 966172 CVE-2017-11532 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-17805 CVE-2017-17806 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-6891 CVE-2017-9951 CVE-2018-1000654 CVE-2018-16413 CVE-2018-16640 CVE-2018-16642 CVE-2018-16643 CVE-2018-16644 CVE-2018-16645 CVE-2018-16749 CVE-2018-16750 CVE-2019-14287 CVE-2019-17006 CVE-2019-17631 CVE-2019-2933 CVE-2019-2945 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2996 CVE-2019-2999 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-5953 CVE-2019-9628 CVE-2020-12399 CVE-2020-12402 CVE-2020-12653 CVE-2020-12654 CVE-2020-14350 CVE-2020-14355 CVE-2020-15049 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-5260 SUSE-SU-2017:2420-1 SUSE-SU-2018:0010-1 SUSE-SU-2018:0839-1 SUSE-SU-2018:3095-1 SUSE-SU-2019:2666-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:3084-1 SUSE-SU-2020:3477-1
Platform(s):	openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information go1.12-1.12.9-lp151.2.13 is installed OR go1.12-doc-1.12.9-lp151.2.13 is installed OR go1.12-race-1.12.9-lp151.2.13 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-69.0.3686.49-lp151.2.21 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information LibVNCServer-0.9.10-lp152.9.4 is installed OR LibVNCServer-devel-0.9.10-lp152.9.4 is installed OR libvncclient0-0.9.10-lp152.9.4 is installed OR libvncserver0-0.9.10-lp152.9.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information xen-4.9.0_12-3.15 is installed OR xen-doc-html-4.9.0_12-3.15 is installed OR xen-libs-4.9.0_12-3.15 is installed OR xen-libs-32bit-4.9.0_12-3.15 is installed OR xen-tools-4.9.0_12-3.15 is installed OR xen-tools-domU-4.9.0_12-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtasn1-4.9-3.10 is installed OR libtasn1-6-4.9-3.10 is installed OR libtasn1-6-32bit-4.9-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cpp48-4.8.5-31.17 is installed OR gcc48-4.8.5-31.17 is installed OR gcc48-32bit-4.8.5-31.17 is installed OR gcc48-c++-4.8.5-31.17 is installed OR gcc48-info-4.8.5-31.17 is installed OR gcc48-locale-4.8.5-31.17 is installed OR libasan0-4.8.5-31.17 is installed OR libasan0-32bit-4.8.5-31.17 is installed OR libstdc++48-devel-4.8.5-31.17 is installed OR libstdc++48-devel-32bit-4.8.5-31.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libxerces-c-3_1-3.1.1-13.3 is installed OR libxerces-c-3_1-32bit-3.1.1-13.3 is installed OR xerces-c-3.1.1-13.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xorg-x11-server-1.19.6-4.11 is installed OR xorg-x11-server-extra-1.19.6-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed

BACK