Oval Definition:oval:org.opensuse.security:def:74803
Revision Date:2020-12-01Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues:

- CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method (bsc#1168874). - CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images (bsc#1168874). - CVE-2020-6825: Fixed Memory safety bugs (bsc#1168874). - CVE-2020-6827: Custom Tabs could have the URI spoofed (bsc#1168874). - CVE-2020-6828: Preference overwrite via crafted Intent (bsc#1168874).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1168874
1172377
CVE-2020-13401
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
CVE-2020-6827
CVE-2020-6828
openSUSE-SU-2020:0493-1
openSUSE-SU-2020:0846-1
Platform(s):openSUSE Leap 15.1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaFirefox-68.7.0-lp151.2.42 is installed
  • OR MozillaFirefox-branding-upstream-68.7.0-lp151.2.42 is installed
  • OR MozillaFirefox-buildsymbols-68.7.0-lp151.2.42 is installed
  • OR MozillaFirefox-devel-68.7.0-lp151.2.42 is installed
  • OR MozillaFirefox-translations-common-68.7.0-lp151.2.42 is installed
  • OR MozillaFirefox-translations-other-68.7.0-lp151.2.42 is installed
    • BACK