Oval Definition:oval:org.opensuse.security:def:63786
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox to ESR 60.9 fixes the following issues:

Security issues fixed:

- CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. (bsc#1149303) - CVE-2019-11746: Fixed a use-after-free while manipulating video. (bsc#1149297) - CVE-2019-11744: Fixed an XSS caused by breaking out of title and textarea elements using innerHTML. (bsc#1149304) - CVE-2019-11753: Fixed a privilege escalation with Mozilla Maintenance Service in custom Firefox installation location. (bsc#1149295) - CVE-2019-11752: Fixed a use-after-free while extracting a key value in IndexedDB. (bsc#1149296) - CVE-2019-11743: Fixed a timing side-channel attack on cross-origin information, utilizing unload event attributes. (bsc#1149298) - CVE-2019-11740: Fixed several memory safety bugs. (bsc#1149299)
Family:unixClass:patch
Status:Reference(s):1055014
1058115
1061843
1065600
1065729
1066382
1077428
1082318
1112178
1117951
1119454
1127080
1128828
1131277
1134760
1140709
1142614
1149294
1149295
1149296
1149297
1149298
1149299
1149303
1149304
1149324
1159856
1159858
1159860
1160249
1160250
1160251
1160937
1163592
1165680
1167030
1168404
1168407
1169066
1169952
1170415
1171558
1173029
1173063
1173432
1174748
1175070
1175071
1175072
1175476
1176354
1176485
1176560
1176713
1176723
1176907
1177086
1177101
1177271
1177281
1177410
1177411
1177470
1177687
1177719
1177740
1177749
1177750
1177753
1177754
1177755
1177766
1177855
1177856
1177861
1178027
1178123
1178166
1178185
1178187
1178188
1178202
1178234
1178330
1178588
936888
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11753
CVE-2019-12838
CVE-2019-14562
CVE-2019-1559
CVE-2019-15691
CVE-2019-15692
CVE-2019-15693
CVE-2019-15694
CVE-2019-15695
CVE-2019-9812
CVE-2019-9893
CVE-2020-0430
CVE-2020-11985
CVE-2020-11993
CVE-2020-14351
CVE-2020-16120
CVE-2020-1927
CVE-2020-1934
CVE-2020-1938
CVE-2020-25285
CVE-2020-25656
CVE-2020-25668
CVE-2020-26950
CVE-2020-6505
CVE-2020-6506
CVE-2020-6507
CVE-2020-8694
CVE-2020-9490
openSUSE-SU-2019:2052-1
openSUSE-SU-2020:0845-1
openSUSE-SU-2020:1525-1
SUSE-SU-2019:0572-1
SUSE-SU-2019:2436-1
SUSE-SU-2019:2941-1
SUSE-SU-2020:1272-1
SUSE-SU-2020:1749-1
SUSE-SU-2020:3331-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libpmi0-18.08.8-lp151.2.3 is installed
  • OR libslurm33-18.08.8-lp151.2.3 is installed
  • OR perl-slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-auth-none-18.08.8-lp151.2.3 is installed
  • OR slurm-config-18.08.8-lp151.2.3 is installed
  • OR slurm-config-man-18.08.8-lp151.2.3 is installed
  • OR slurm-cray-18.08.8-lp151.2.3 is installed
  • OR slurm-devel-18.08.8-lp151.2.3 is installed
  • OR slurm-doc-18.08.8-lp151.2.3 is installed
  • OR slurm-hdf5-18.08.8-lp151.2.3 is installed
  • OR slurm-lua-18.08.8-lp151.2.3 is installed
  • OR slurm-munge-18.08.8-lp151.2.3 is installed
  • OR slurm-node-18.08.8-lp151.2.3 is installed
  • OR slurm-openlava-18.08.8-lp151.2.3 is installed
  • OR slurm-pam_slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-plugins-18.08.8-lp151.2.3 is installed
  • OR slurm-seff-18.08.8-lp151.2.3 is installed
  • OR slurm-sjstat-18.08.8-lp151.2.3 is installed
  • OR slurm-slurmdbd-18.08.8-lp151.2.3 is installed
  • OR slurm-sql-18.08.8-lp151.2.3 is installed
  • OR slurm-sview-18.08.8-lp151.2.3 is installed
  • OR slurm-torque-18.08.8-lp151.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • ovmf-201911-lp152.6.5 is installed
  • OR ovmf-tools-201911-lp152.6.5 is installed
  • OR qemu-ovmf-ia32-201911-lp152.6.5 is installed
  • OR qemu-ovmf-x86_64-201911-lp152.6.5 is installed
  • OR qemu-ovmf-x86_64-debug-201911-lp152.6.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • MozillaFirefox-78.4.1-112.32 is installed
  • OR MozillaFirefox-devel-78.4.1-112.32 is installed
  • OR MozillaFirefox-translations-common-78.4.1-112.32 is installed
    • BACK