Oval Definition:oval:org.opensuse.security:def:64937
Revision Date:2020-12-01Version:1
Title:Security update for mozilla-nspr, mozilla-nss (Moderate)
Description:

This update for mozilla-nspr, mozilla-nss fixes the following issues:

mozilla-nss was updated to NSS 3.47.1:

Security issues fixed:

- CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - CVE-2019-11745: EncryptUpdate should use maxout, not block size (bsc#1158527). - CVE-2019-11727: Fixed vulnerability sign CertificateVerify with PKCS#1 v1.5 signatures issue (bsc#1141322).

mozilla-nspr was updated to version 4.23:

- Whitespace in C files was cleaned up and no longer uses tab characters for indenting.
Family:unixClass:patch
Status:Reference(s):1058115
1065600
1065729
1071995
1083548
1085030
1111666
1112178
1113956
1120163
1132091
1133021
1136666
1141322
1144333
1152148
1158527
1159819
1163524
1165629
1166965
1169790
1170232
1171558
1171688
1171988
1172073
1172108
1172247
1172418
1172428
1172871
1172872
1172873
1172963
1173060
1173485
1173798
1173954
1174003
1174026
1174070
1174205
1174387
1174415
1174484
1174547
1174549
1174550
1174625
1174658
1174685
1174689
1174699
1174734
1174757
1174771
1174840
1174841
1174843
1174844
1174845
1174852
1174873
1174904
1174926
1174968
1175062
1175063
1175064
1175065
1175066
1175067
1175112
1175127
1175128
1175149
1175199
1175213
1175228
1175232
1175284
1175393
1175394
1175396
1175397
1175398
1175399
1175400
1175401
1175402
1175403
1175404
1175405
1175406
1175407
1175408
1175409
1175410
1175411
1175412
1175413
1175414
1175415
1175416
1175417
1175418
1175419
1175420
1175421
1175422
1175423
1175440
1175493
1175515
1175518
1175526
1175550
1175654
1175666
1175667
1175668
1175669
1175670
1175691
1175767
1175768
1175769
1175770
1175771
1175772
1175786
1175873
1176069
1176086
1176181
1176671
CVE-2018-18508
CVE-2019-11023
CVE-2019-11745
CVE-2019-17006
CVE-2020-10135
CVE-2020-14314
CVE-2020-14331
CVE-2020-14356
CVE-2020-14386
CVE-2020-15900
CVE-2020-16166
CVE-2020-1749
CVE-2020-24394
CVE-2020-24659
openSUSE-SU-2020:0906-1
openSUSE-SU-2020:1146-1
openSUSE-SU-2020:1743-1
SUSE-SU-2019:3395-1
SUSE-SU-2020:2575-1
Platform(s):openSUSE Leap 15.2
SUSE Linux Enterprise Module for Basesystem 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • ghostscript-9.52-lp152.2.4 is installed
  • OR ghostscript-devel-9.52-lp152.2.4 is installed
  • OR ghostscript-mini-9.52-lp152.2.4 is installed
  • OR ghostscript-mini-devel-9.52-lp152.2.4 is installed
  • OR ghostscript-x11-9.52-lp152.2.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libfreebl3-3.47.1-3.22 is installed
  • OR libfreebl3-32bit-3.47.1-3.22 is installed
  • OR libsoftokn3-3.47.1-3.22 is installed
  • OR libsoftokn3-32bit-3.47.1-3.22 is installed
  • OR mozilla-nspr-4.23-3.9 is installed
  • OR mozilla-nspr-32bit-4.23-3.9 is installed
  • OR mozilla-nspr-devel-4.23-3.9 is installed
  • OR mozilla-nss-3.47.1-3.22 is installed
  • OR mozilla-nss-32bit-3.47.1-3.22 is installed
  • OR mozilla-nss-certs-3.47.1-3.22 is installed
  • OR mozilla-nss-certs-32bit-3.47.1-3.22 is installed
  • OR mozilla-nss-devel-3.47.1-3.22 is installed
  • OR mozilla-nss-sysinit-3.47.1-3.22 is installed
  • OR mozilla-nss-tools-3.47.1-3.22 is installed
    • BACK