Oval Definition:	oval:org.opensuse.security:def:64154
Revision Date: 2020-12-01 Version: 1 Title: Security update for MozillaFirefox (Important) Description: This update for MozillaFirefox fixes the following issues: -Firefox was updated to 78.3.0 ESR (bsc#1176756, MFSA 2020-43) - CVE-2020-15677: Download origin spoofing via redirect - CVE-2020-15676: Fixed an XSS when pasting attacker-controlled data into a contenteditable element - CVE-2020-15678: When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free scenario - CVE-2020-15673: Fixed memory safety bugs - Enhance fix for wayland-detection (bsc#1174420) - Attempt to fix langpack-parallelization by introducing separate obj-dirs for each lang (bsc#1173986, bsc#1167976) Family: unix Class: patch Status: Reference(s): 1082318 1101024 1101139 1122242 1122243 1122244 1122245 1122535 1140738 1141267 1144059 1154884 1154887 1158990 1158992 1161297 1163749 1163764 1164903 1167976 1169832 1170200 1170498 1170826 1172868 1173079 1173986 1174153 1174191 1174420 1174466 1174529 1174644 1174977 1175120 1175161 1175169 1176409 1176412 1176451 1176499 1176638 1176756 1177078 1177151 1177319 1177344 1177450 1177643 1177676 1177843 1177933 1178073 1178531 CVE-2009-4112 CVE-2012-4453 CVE-2016-8637 CVE-2018-20723 CVE-2018-20724 CVE-2018-20725 CVE-2018-20726 CVE-2019-10197 CVE-2019-12290 CVE-2019-13345 CVE-2019-16723 CVE-2019-17357 CVE-2019-17358 CVE-2019-18224 CVE-2020-14039 CVE-2020-14392 CVE-2020-14393 CVE-2020-15586 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-16845 CVE-2020-25660 CVE-2020-7106 CVE-2020-7237 openSUSE-SU-2019:1963-1 openSUSE-SU-2019:2142-1 openSUSE-SU-2019:2611-1 openSUSE-SU-2020:0272-1 openSUSE-SU-2020:1405-1 openSUSE-SU-2020:1483-1 SUSE-SU-2020:2759-1 SUSE-SU-2020:3473-2 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Enterprise Storage 7 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND squid-4.8-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND perl-DBI-1.642-lp152.2.3 is installed Definition Synopsis SUSE Enterprise Storage 7 is installed AND Package Information ceph-15.2.5.667+g1a579d5bf2-3.5 is installed OR ceph-base-15.2.5.667+g1a579d5bf2-3.5 is installed OR ceph-common-15.2.5.667+g1a579d5bf2-3.5 is installed OR cephadm-15.2.5.667+g1a579d5bf2-3.5 is installed OR libcephfs2-15.2.5.667+g1a579d5bf2-3.5 is installed OR librados2-15.2.5.667+g1a579d5bf2-3.5 is installed OR librbd1-15.2.5.667+g1a579d5bf2-3.5 is installed OR librgw2-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-ceph-argparse-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-ceph-common-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-cephfs-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-rados-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-rbd-15.2.5.667+g1a579d5bf2-3.5 is installed OR python3-rgw-15.2.5.667+g1a579d5bf2-3.5 is installed OR rbd-nbd-15.2.5.667+g1a579d5bf2-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information dracut-044.2-18.24 is installed OR dracut-fips-044.2-18.24 is installed OR dracut-ima-044.2-18.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-78.3.0-112.22 is installed OR MozillaFirefox-devel-78.3.0-112.22 is installed OR MozillaFirefox-translations-common-78.3.0-112.22 is installed
BACK