Oval Definition:	oval:org.opensuse.security:def:64019
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox fixes the following issues: MozillaFirefox was updated to 68.6.0 ESR (MFSA 2020-09 bsc#1132665 bsc#1166238) - CVE-2020-6805: Fixed a use-after-free when removing data about origins - CVE-2020-6806: Fixed improper protections against state confusion - CVE-2020-6807: Fixed a use-after-free in cubeb during stream destruction - CVE-2020-6811: Fixed an issue where copy as cURL' feature did not fully escape website-controlled data potentially leading to command injection - CVE-2019-20503: Fixed out of bounds reads in sctp_load_addresses_from_init - CVE-2020-6812: Fixed an issue where the names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission - CVE-2020-6814: Fixed multiple memory safety bugs - Fixed an issue with minimizing a window (bsc#1132665). Family: unix Class: patch Status: Reference(s): 1115034 1132665 1135170 1135418 1140709 1141967 1142772 1145692 1153095 1153259 1155784 1158696 1159692 1163019 1166238 1173026 1173027 1174543 1176756 1177872 1177950 1178591 CVE-2019-1010180 CVE-2019-11037 CVE-2019-12838 CVE-2019-13640 CVE-2019-19727 CVE-2019-19728 CVE-2019-20503 CVE-2019-5436 CVE-2020-15683 CVE-2020-15969 CVE-2020-28368 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2020-8169 CVE-2020-8177 CVE-2020-8608 openSUSE-SU-2019:1508-1 openSUSE-SU-2019:2005-1 openSUSE-SU-2019:2494-1 openSUSE-SU-2020:0014-1 openSUSE-SU-2020:0085-1 openSUSE-SU-2020:0883-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:3053-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information curl-7.66.0-lp152.3.3 is installed OR curl-mini-7.66.0-lp152.3.3 is installed OR libcurl-devel-7.66.0-lp152.3.3 is installed OR libcurl-devel-32bit-7.66.0-lp152.3.3 is installed OR libcurl-mini-devel-7.66.0-lp152.3.3 is installed OR libcurl4-7.66.0-lp152.3.3 is installed OR libcurl4-32bit-7.66.0-lp152.3.3 is installed OR libcurl4-mini-7.66.0-lp152.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-68.6.0-109.110 is installed OR MozillaFirefox-translations-common-68.6.0-109.110 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xen-4.11.4_12-2.42 is installed OR xen-doc-html-4.11.4_12-2.42 is installed OR xen-libs-4.11.4_12-2.42 is installed OR xen-libs-32bit-4.11.4_12-2.42 is installed OR xen-tools-4.11.4_12-2.42 is installed OR xen-tools-domU-4.11.4_12-2.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-78.4.0-112.28 is installed OR MozillaFirefox-devel-78.4.0-112.28 is installed OR MozillaFirefox-translations-common-78.4.0-112.28 is installed
BACK