Oval Definition:oval:org.opensuse.security:def:63990
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 68.5.0 ESR * CVE-2020-6796 (bmo#1610426) Missing bounds check on shared memory read in the parent process * CVE-2020-6797 (bmo#1596668) Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 (bmo#1602944) Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6799 (bmo#1606596) Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543, bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 * Fixed: Fixed various issues opening files with spaces in their path (bmo#1601905, bmo#1602726)
Family:unixClass:patch
Status:Reference(s):1082023
1126826
1126829
1126831
1134208
1140126
1140290
1142649
1142770
1143609
1149792
1153674
1153768
1153770
1157755
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1160254
1160590
1161799
1163333
1163744
1172402
1174120
1174316
1174628
1176579
1178387
CVE-2019-1010190
CVE-2019-12972
CVE-2019-13173
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-14250
CVE-2019-14287
CVE-2019-14444
CVE-2019-17450
CVE-2019-17451
CVE-2019-19604
CVE-2019-9074
CVE-2019-9075
CVE-2019-9077
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
CVE-2020-14344
CVE-2020-1472
CVE-2020-25692
CVE-2020-6796
CVE-2020-6797
CVE-2020-6798
CVE-2020-6799
CVE-2020-6800
openSUSE-SU-2019:1846-1
openSUSE-SU-2019:2316-1
openSUSE-SU-2020:0123-1
openSUSE-SU-2020:0789-1
openSUSE-SU-2020:1804-1
SUSE-SU-2020:0384-1
SUSE-SU-2020:0853-1
SUSE-SU-2020:2196-1
SUSE-SU-2020:3314-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • nodejs10-10.16.0-lp151.2.3 is installed
  • OR nodejs10-devel-10.16.0-lp151.2.3 is installed
  • OR nodejs10-docs-10.16.0-lp151.2.3 is installed
  • OR npm10-10.16.0-lp151.2.3 is installed
  • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • binutils-2.35-lp152.4.3 is installed
  • OR binutils-devel-2.35-lp152.4.3 is installed
  • OR binutils-devel-32bit-2.35-lp152.4.3 is installed
  • OR binutils-gold-2.35-lp152.4.3 is installed
  • OR cross-aarch64-binutils-2.35-lp152.4.3 is installed
  • OR cross-arm-binutils-2.35-lp152.4.3 is installed
  • OR cross-avr-binutils-2.35-lp152.4.3 is installed
  • OR cross-epiphany-binutils-2.35-lp152.4.3 is installed
  • OR cross-hppa-binutils-2.35-lp152.4.3 is installed
  • OR cross-hppa64-binutils-2.35-lp152.4.3 is installed
  • OR cross-i386-binutils-2.35-lp152.4.3 is installed
  • OR cross-ia64-binutils-2.35-lp152.4.3 is installed
  • OR cross-m68k-binutils-2.35-lp152.4.3 is installed
  • OR cross-mips-binutils-2.35-lp152.4.3 is installed
  • OR cross-ppc-binutils-2.35-lp152.4.3 is installed
  • OR cross-ppc64-binutils-2.35-lp152.4.3 is installed
  • OR cross-ppc64le-binutils-2.35-lp152.4.3 is installed
  • OR cross-riscv64-binutils-2.35-lp152.4.3 is installed
  • OR cross-rx-binutils-2.35-lp152.4.3 is installed
  • OR cross-s390-binutils-2.35-lp152.4.3 is installed
  • OR cross-s390x-binutils-2.35-lp152.4.3 is installed
  • OR cross-sparc-binutils-2.35-lp152.4.3 is installed
  • OR cross-sparc64-binutils-2.35-lp152.4.3 is installed
  • OR cross-spu-binutils-2.35-lp152.4.3 is installed
  • OR cross-xtensa-binutils-2.35-lp152.4.3 is installed
  • OR libctf-nobfd0-2.35-lp152.4.3 is installed
  • OR libctf0-2.35-lp152.4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-68.5.0-109.106 is installed
  • OR MozillaFirefox-translations-common-68.5.0-109.106 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libdcerpc0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-krb5pac0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-nbt0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-standard0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr-standard0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libndr0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libnetapi0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libnetapi0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-credentials0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-errors0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-hostconfig0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-passdb0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-util0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamba-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamdb0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsamdb0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbconf0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbconf0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbldap0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libsmbldap0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libtevent-util0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libtevent-util0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libwbclient0-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR libwbclient0-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-client-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-client-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-doc-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-libs-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-libs-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-winbind-4.6.16+git.237.40a3f495f75-3.55 is installed
  • OR samba-winbind-32bit-4.6.16+git.237.40a3f495f75-3.55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libX11-1.6.2-12.12 is installed
  • OR libX11-6-1.6.2-12.12 is installed
  • OR libX11-6-32bit-1.6.2-12.12 is installed
  • OR libX11-data-1.6.2-12.12 is installed
  • OR libX11-xcb1-1.6.2-12.12 is installed
  • OR libX11-xcb1-32bit-1.6.2-12.12 is installed
  • BACK