Oval Definition:oval:org.opensuse.security:def:91970
Revision Date:2021-01-29Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 78.7.0 ESR (MFSA 2021-04, bsc#1181414) * CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests * CVE-2021-23954: Fixed a type confusion when using logical assignment operators in JavaScript switch statements * CVE-2020-26976: Fixed an issue where HTTPS pages could have been intercepted by a registered service worker when they should not have been * CVE-2021-23960: Fixed a use-after-poison for incorrectly redeclared JavaScript variables during GC * CVE-2021-23964: Fixed Memory safety bugs
Family:unixClass:patch
Status:Reference(s):1181414
CVE-2020-26976
CVE-2021-23953
CVE-2021-23954
CVE-2021-23960
CVE-2021-23964
SUSE-SU-2021:0246-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-78.7.0-3.128.2 is installed
  • OR MozillaFirefox-devel-78.7.0-3.128.2 is installed
  • OR MozillaFirefox-translations-common-78.7.0-3.128.2 is installed
  • OR MozillaFirefox-translations-other-78.7.0-3.128.2 is installed
  • BACK