Oval Definition:oval:org.opensuse.security:def:72814
Revision Date:2020-12-01Version:1
Title:Security update for mozilla-nspr, mozilla-nss (Moderate)
Description:

This update for mozilla-nspr, mozilla-nss fixes the following issues:

mozilla-nss was updated to NSS 3.47.1:

Security issues fixed:

- CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). - CVE-2019-11745: EncryptUpdate should use maxout, not block size (bsc#1158527). - CVE-2019-11727: Fixed vulnerability sign CertificateVerify with PKCS#1 v1.5 signatures issue (bsc#1141322).

mozilla-nspr was updated to version 4.23:

- Whitespace in C files was cleaned up and no longer uses tab characters for indenting.
Family:unixClass:patch
Status:Reference(s):1051510
1065729
1071995
1085030
1111666
1112178
1113956
1114279
1141322
1144333
1148868
1150660
1151927
1152107
1152624
1158527
1158983
1159058
1159819
1161016
1162002
1162063
1163309
1166985
1167104
1168081
1168959
1169194
1169514
1169771
1169795
1170011
1170442
1170592
1170617
1170618
1171124
1171424
1171529
1171530
1171558
1171732
1171739
1171743
1171753
1171759
1171835
1171841
1171868
1171904
1172247
1172257
1172344
1172458
1172484
1172537
1172538
1172687
1172719
1172759
1172775
1172781
1172782
1172783
1172871
1172872
1172999
1173060
1173074
1173146
1173265
1173280
1173284
1173428
1173514
1173567
1173573
1173659
1173746
1173818
1173820
1173825
1173826
1173833
1173838
1173839
1173845
1173857
1174113
1174115
1174122
1174123
1174186
1174187
1174296
1174343
1174356
1174409
1174438
1174462
1174543
CVE-2018-18508
CVE-2019-11745
CVE-2019-16746
CVE-2019-17006
CVE-2019-20810
CVE-2019-20908
CVE-2020-0305
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-10781
CVE-2020-12771
CVE-2020-12888
CVE-2020-13974
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
SUSE-SU-2019:3395-1
SUSE-SU-2020:2107-1
Platform(s):SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-197.48 is installed
  • OR dlm-kmp-default-4.12.14-197.48 is installed
  • OR gfs2-kmp-default-4.12.14-197.48 is installed
  • OR kernel-default-4.12.14-197.48 is installed
  • OR ocfs2-kmp-default-4.12.14-197.48 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libfreebl3-hmac-3.47.1-3.22 is installed
  • OR libsoftokn3-hmac-3.47.1-3.22 is installed
  • OR mozilla-nss-3.47.1-3.22 is installed
  • BACK