Oval Definition:oval:org.opensuse.security:def:69573
Revision Date:2021-12-10Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:



Update to Extended Support Release 91.4.0 (bsc#1193485):

- CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321)
Family:unixClass:patch
Status:Reference(s):1144902
1148539
1152143
1154289
1154598
1167070
1169473
1169851
1193321
1193485
CVE-2019-10218
CVE-2019-14833
CVE-2019-14847
CVE-2020-10704
CVE-2021-43536
CVE-2021-43537
CVE-2021-43538
CVE-2021-43539
CVE-2021-43541
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
SUSE-SU-2019:2866-1
SUSE-SU-2020:1133-1
SUSE-SU-2021:3995-1
Platform(s):SUSE Enterprise Storage 6
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Server 15-LTSS
Product(s):
Definition Synopsis
  • SUSE Enterprise Storage 6 is installed
  • AND Package Information
  • samba-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-ceph-4.9.5+git.210.ab0549acb05-3.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • ctdb-4.9.5+git.317.6d82fb3918b-3.35 is installed
  • OR samba-4.9.5+git.317.6d82fb3918b-3.35 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • MozillaFirefox-91.4.0-150.9.1 is installed
  • OR MozillaFirefox-devel-91.4.0-150.9.1 is installed
  • OR MozillaFirefox-translations-common-91.4.0-150.9.1 is installed
  • OR MozillaFirefox-translations-other-91.4.0-150.9.1 is installed
  • BACK