OVAL Reference oval:org.opensuse.security:def:67449

Oval Definition:

oval:org.opensuse.security:def:67449

Revision Date:	2020-12-01	Version:	1
Title:	Security update for mozilla-nspr, mozilla-nss (Important)
Description:	This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53 - CVE-2020-12399: Fixed a timing attack on DSA signature generation (bsc#1171978). - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes mozilla-nspr to version 4.25
Family:	unix	Class:	patch
Status:		Reference(s):	1159819 1169746 1171978 CVE-2015-7578 CVE-2015-7579 CVE-2015-7580 CVE-2018-3741 CVE-2019-17006 CVE-2020-12399 SUSE-SU-2020:1677-1
Platform(s):	SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2	Product(s):
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND ruby2.5-rubygem-rails-html-sanitizer-1.0.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libfreebl3-hmac-3.53-3.40 is installed OR libsoftokn3-hmac-3.53-3.40 is installed OR mozilla-nss-3.53-3.40 is installed