Oval Definition:oval:org.opensuse.security:def:6171
Revision Date:2022-02-24Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

Firefox Extended Support Release 91.6.0 ESR / MFSA 2022-05 (bsc#1195682)

- CVE-2022-22753: Privilege Escalation to SYSTEM on Windows via Maintenance Service - CVE-2022-22754: Extensions could have bypassed permission confirmation during update - CVE-2022-22756: Drag and dropping an image could have resulted in the dropped object being an executable - CVE-2022-22759: Sandboxed iframes could have executed script if the parent appended elements - CVE-2022-22760: Cross-Origin responses could be distinguished between script and non-script content-types - CVE-2022-22761: frame-ancestors Content Security Policy directive was not enforced for framed extension pages - CVE-2022-22763: Script Execution during invalid object state - CVE-2022-22764: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6



Firefox Extended Support Release 91.5.1 ESR (bsc#1195230)

- Fixed an issue that allowed unexpected data to be submitted in some of our search telemetry
Family:unixClass:patch
Status:Reference(s):1189497
1195230
1195682
CVE-2007-6746
CVE-2009-0790
CVE-2009-1885
CVE-2009-1886
CVE-2009-1888
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2010-0926
CVE-2010-1172
CVE-2010-1635
CVE-2010-1642
CVE-2010-2063
CVE-2010-2947
CVE-2010-3069
CVE-2010-3609
CVE-2011-0719
CVE-2011-2522
CVE-2011-2694
CVE-2012-0817
CVE-2012-0870
CVE-2012-1182
CVE-2012-2111
CVE-2012-2388
CVE-2012-3355
CVE-2012-3386
CVE-2012-4559
CVE-2012-4560
CVE-2012-4561
CVE-2012-6150
CVE-2013-0172
CVE-2013-0176
CVE-2013-0213
CVE-2013-0214
CVE-2013-0292
CVE-2013-0454
CVE-2013-1863
CVE-2013-1987
CVE-2013-2944
CVE-2013-4124
CVE-2013-4238
CVE-2013-4408
CVE-2013-4475
CVE-2013-4476
CVE-2013-4496
CVE-2013-5018
CVE-2013-6075
CVE-2013-6076
CVE-2013-6442
CVE-2014-0017
CVE-2014-0178
CVE-2014-0239
CVE-2014-0244
CVE-2014-2338
CVE-2014-2524
CVE-2014-3493
CVE-2014-3560
CVE-2014-6271
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2014-7202
CVE-2014-7203
CVE-2014-8132
CVE-2014-8143
CVE-2014-9221
CVE-2014-9721
CVE-2015-0240
CVE-2015-0252
CVE-2015-3146
CVE-2015-3223
CVE-2015-4171
CVE-2015-5252
CVE-2015-5296
CVE-2015-5299
CVE-2015-5330
CVE-2015-5370
CVE-2015-7560
CVE-2015-8023
CVE-2015-8467
CVE-2015-8543
CVE-2016-0634
CVE-2016-0729
CVE-2016-0739
CVE-2016-0771
CVE-2016-2099
CVE-2016-2110
CVE-2016-2111
CVE-2016-2112
CVE-2016-2113
CVE-2016-2115
CVE-2016-2118
CVE-2016-2119
CVE-2016-2123
CVE-2016-2125
CVE-2016-2126
CVE-2016-3698
CVE-2016-4463
CVE-2016-7543
CVE-2016-7949
CVE-2016-7950
CVE-2017-11103
CVE-2017-12150
CVE-2017-12151
CVE-2017-12163
CVE-2017-14746
CVE-2017-15275
CVE-2017-2619
CVE-2017-7494
CVE-2017-9022
CVE-2017-9023
CVE-2018-1050
CVE-2018-1057
CVE-2018-10858
CVE-2018-10919
CVE-2018-10933
CVE-2021-30475
CVE-2022-22753
CVE-2022-22754
CVE-2022-22756
CVE-2022-22759
CVE-2022-22760
CVE-2022-22761
CVE-2022-22763
CVE-2022-22764
SUSE-SU-2022:0565-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
openSUSE Leap 42.1
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Build System Kit 12 SP4
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for High Performance Computing 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
SUSE OpenStack Cloud 6
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND kernel-zfcpdump-3.12.32-33 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND kernel-zfcpdump-3.12.59-60.45 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • libudev-mini-devel-228-149 is installed
  • OR libudev-mini1-228-149 is installed
  • OR systemd-mini-228-149 is installed
  • OR systemd-mini-devel-228-149 is installed
  • OR udev-mini-228-149 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP3 is installed
  • AND kernel-zfcpdump-4.4.82-6.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP4 is installed
  • AND Package Information
  • krb5-mini-1.12.5-40.31 is installed
  • OR krb5-mini-devel-1.12.5-40.31 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND bogofilter-1.1.1-174.27.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-17.0.9esr-0.7.1 is installed
  • OR MozillaFirefox-translations-17.0.9esr-0.7.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • tigervnc-1.3.0-22 is installed
  • OR xorg-x11-Xvnc-1.3.0-22 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • openslp-2.0.0-5 is installed
  • OR openslp-32bit-2.0.0-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • rhythmbox-3.4-6 is installed
  • OR rhythmbox-lang-3.4-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bash-4.3-83.15 is installed
  • OR bash-doc-4.3-83.15 is installed
  • OR bash-lang-4.3-83.15 is installed
  • OR libreadline6-6.3-83.15 is installed
  • OR libreadline6-32bit-6.3-83.15 is installed
  • OR readline-doc-6.3-83.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kernel-default-3.12.61-52.83 is installed
  • OR kernel-default-base-3.12.61-52.83 is installed
  • OR kernel-default-devel-3.12.61-52.83 is installed
  • OR kernel-devel-3.12.61-52.83 is installed
  • OR kernel-macros-3.12.61-52.83 is installed
  • OR kernel-source-3.12.61-52.83 is installed
  • OR kernel-syms-3.12.61-52.83 is installed
  • OR kernel-xen-3.12.61-52.83 is installed
  • OR kernel-xen-base-3.12.61-52.83 is installed
  • OR kernel-xen-devel-3.12.61-52.83 is installed
  • OR kgraft-patch-3_12_61-52_83-default-1-2 is installed
  • OR kgraft-patch-3_12_61-52_83-xen-1-2 is installed
  • OR kgraft-patch-SLE12_Update_24-1-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108.3 is installed
  • OR MozillaFirefox-branding-SLE-52-31.1 is installed
  • OR MozillaFirefox-devel-52.2.0esr-108.3 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND lighttpd-1.4.35-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND python-requests-2.11.1-6.28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND conntrack-tools-1.4.2-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND binutils-2.32-9.36 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_62-60_64_8-default-2-2 is installed
  • OR kgraft-patch-3_12_62-60_64_8-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_8-2-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_140-94_42-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_15-1-4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • salt-2016.11.4-46.7 is installed
  • OR salt-api-2016.11.4-46.7 is installed
  • OR salt-bash-completion-2016.11.4-46.7 is installed
  • OR salt-cloud-2016.11.4-46.7 is installed
  • OR salt-doc-2016.11.4-46.7 is installed
  • OR salt-master-2016.11.4-46.7 is installed
  • OR salt-minion-2016.11.4-46.7 is installed
  • OR salt-proxy-2016.11.4-46.7 is installed
  • OR salt-ssh-2016.11.4-46.7 is installed
  • OR salt-syndic-2016.11.4-46.7 is installed
  • OR salt-zsh-completion-2016.11.4-46.7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND sles11sp4-docker-image-1.1.1-20160304104123 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 12 is installed
  • AND Package Information
  • libpmi0-17.02.11-6.19 is installed
  • OR libslurm31-17.02.11-6.19 is installed
  • OR perl-slurm-17.02.11-6.19 is installed
  • OR slurm-17.02.11-6.19 is installed
  • OR slurm-auth-none-17.02.11-6.19 is installed
  • OR slurm-config-17.02.11-6.19 is installed
  • OR slurm-devel-17.02.11-6.19 is installed
  • OR slurm-doc-17.02.11-6.19 is installed
  • OR slurm-lua-17.02.11-6.19 is installed
  • OR slurm-munge-17.02.11-6.19 is installed
  • OR slurm-pam_slurm-17.02.11-6.19 is installed
  • OR slurm-plugins-17.02.11-6.19 is installed
  • OR slurm-sched-wiki-17.02.11-6.19 is installed
  • OR slurm-slurmdb-direct-17.02.11-6.19 is installed
  • OR slurm-slurmdbd-17.02.11-6.19 is installed
  • OR slurm-sql-17.02.11-6.19 is installed
  • OR slurm-torque-17.02.11-6.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-87 is installed
  • OR libopenssl0_9_8-0.9.8j-87 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-87 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.32-33 is installed
  • OR kernel-ec2-devel-3.12.32-33 is installed
  • OR kernel-ec2-extra-3.12.32-33 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND cron-4.1-194.24.4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • NetworkManager-0.7.1_git20090811-3.20.5 is installed
  • OR NetworkManager-glib-0.7.1_git20090811-3.20.5 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • file-4.24-43.27.1 is installed
  • OR file-32bit-4.24-43.27.1 is installed
  • OR file-x86-4.24-43.27.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • file-4.24-43.27.1 is installed
  • OR file-32bit-4.24-43.27.1 is installed
  • OR file-x86-4.24-43.27.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • kernel-default-3.0.76-0.11.1 is installed
  • OR kernel-default-base-3.0.76-0.11.1 is installed
  • OR kernel-default-devel-3.0.76-0.11.1 is installed
  • OR kernel-default-man-3.0.76-0.11.1 is installed
  • OR kernel-pae-3.0.76-0.11.1 is installed
  • OR kernel-pae-base-3.0.76-0.11.1 is installed
  • OR kernel-pae-devel-3.0.76-0.11.1 is installed
  • OR kernel-ppc64-3.0.76-0.11.1 is installed
  • OR kernel-ppc64-base-3.0.76-0.11.1 is installed
  • OR kernel-ppc64-devel-3.0.76-0.11.1 is installed
  • OR kernel-source-3.0.76-0.11.1 is installed
  • OR kernel-syms-3.0.76-0.11.1 is installed
  • OR kernel-trace-3.0.76-0.11.1 is installed
  • OR kernel-trace-base-3.0.76-0.11.1 is installed
  • OR kernel-trace-devel-3.0.76-0.11.1 is installed
  • OR kernel-xen-3.0.76-0.11.1 is installed
  • OR kernel-xen-base-3.0.76-0.11.1 is installed
  • OR kernel-xen-devel-3.0.76-0.11.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • file-4.24-43.27.1 is installed
  • OR file-32bit-4.24-43.27.1 is installed
  • OR file-x86-4.24-43.27.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11-SECURITY is installed
  • AND Package Information
  • libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed
  • OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed
  • OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed
  • OR openldap2-client-openssl1-2.4.26-0.62.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • MozillaFirefox-91.6.0-112.89.1 is installed
  • OR MozillaFirefox-devel-91.6.0-112.89.1 is installed
  • OR MozillaFirefox-translations-common-91.6.0-112.89.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • MozillaFirefox-91.6.0-112.89.1 is installed
  • OR MozillaFirefox-devel-91.6.0-112.89.1 is installed
  • OR MozillaFirefox-translations-common-91.6.0-112.89.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • libtag1-1.9.1-1 is installed
  • OR libtag_c0-1.9.1-1 is installed
  • OR taglib-1.9.1-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND libcurl-devel-7.19.7-1.20.31.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • apache2-2.2.12-1.46.1 is installed
  • OR apache2-devel-2.2.12-1.46.1 is installed
  • OR apache2-doc-2.2.12-1.46.1 is installed
  • OR apache2-example-pages-2.2.12-1.46.1 is installed
  • OR apache2-prefork-2.2.12-1.46.1 is installed
  • OR apache2-utils-2.2.12-1.46.1 is installed
  • OR apache2-worker-2.2.12-1.46.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND LibVNCServer-devel-0.9.1-154.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND MozillaFirefox-devel-31.1.0esr-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND aaa_base-malloccheck-13.2+git20140911.61c1681-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • binutils-devel-2.26.1-9.12 is installed
  • OR binutils-gold-2.26.1-9.12 is installed
  • OR cross-ppc-binutils-2.26.1-9.12 is installed
  • OR cross-spu-binutils-2.26.1-9.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • NetworkManager-1.0.12-12 is installed
  • OR NetworkManager-devel-1.0.12-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND pidgin-plugin-otr-4.0.2-1 is installed
  • BACK