Vulnerability CVE-2013-1726 - CERT Civis.Net

Vulnerability Name:

CVE-2013-1726 (CCN-87200)

Assigned:

2013-09-17

Published:

2013-09-17

Updated:

2017-09-19

Summary:

Mozilla Updater in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 does not ensure exclusive access to a MAR file, which allows local users to gain privileges by creating a Trojan horse file after MAR signature verification but before MAR use.

CVSS v3 Severity:

9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.2 Medium (CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C)
4.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2013-1726

Source: FEDORA
Type: UNKNOWN
FEDORA-2013-16992

Source: FEDORA
Type: UNKNOWN
FEDORA-2013-17074

Source: FEDORA
Type: UNKNOWN
FEDORA-2013-17047

Source: CCN
Type: MFSA 2013-83
Mozilla Updater does not lock MAR file after signature verification

Source: CONFIRM
Type: Vendor Advisory
http://www.mozilla.org/security/announce/2013/mfsa2013-83.html

Source: CCN
Type: BID-62482
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-1726 Security Bypass Vulnerability

Source: CCN
Type: 8pecxstudios Web site
Cyberfox 24.0.0

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.mozilla.org/show_bug.cgi?id=890853

Source: XF
Type: UNKNOWN
firefox-cve20131726-priv-esc(87200)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:18821

Vulnerable Configuration:

Configuration 1:

cpe:/a:mozilla:thunderbird_esr:17.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird_esr:17.0.8:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:mozilla:thunderbird:17.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:17.0.8:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:*:*:*:*:*:*:*:* (Version <= 17.0.9)

Configuration 3:

cpe:/a:mozilla:firefox:19.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:20.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:21.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:22.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:23.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version <= 23.0.1)

Configuration 4:

cpe:/a:mozilla:firefox_esr:17.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:17.0.8:*:*:*:*:*:*:*

Configuration 5:

cpe:/a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:rc1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.1:rc2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.10:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.10:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.10:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.10:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.10.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.11:beta6:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12:beta6:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.12.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13:beta6:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.13.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.14:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15:beta6:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.15.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16:beta5:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.16.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.17.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.18:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.18:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.18:beta3:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.18:beta4:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.19:*:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.19:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.19:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:*:*:*:*:*:*:*:* (Version <= 2.20)

OR cpe:/a:mozilla:seamonkey:2.20:beta1:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.20:beta2:*:*:*:*:*:*

OR cpe:/a:mozilla:seamonkey:2.20:beta3:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20131726	V	CVE-2013-1726	2022-05-20
oval:org.opensuse.security:def:57193	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:33996	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:57119	P	Security update for binutils (Moderate)	2021-11-02
oval:org.opensuse.security:def:55261	P	Security update for qemu (Important)	2021-10-28
oval:org.opensuse.security:def:29430	P	Security update for glibc (Moderate)	2021-10-06
oval:org.opensuse.security:def:33726	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:29427	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:33009	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:32997	P	Security update for xen (Important)	2021-09-06
oval:org.opensuse.security:def:55939	P	Security update for python-PyYAML (Important)	2021-08-24
oval:org.opensuse.security:def:34511	P	Security update for fetchmail (Moderate)	2021-08-18
oval:org.opensuse.security:def:33957	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:33694	P	Security update for libsndfile (Critical)	2021-08-05
oval:org.opensuse.security:def:33677	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:34471	P	Security update for libxml2 (Moderate)	2021-06-18
oval:org.opensuse.security:def:33908	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:33789	P	Security update for tomcat (Important)	2021-03-30
oval:org.opensuse.security:def:55858	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:33088	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:33765	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:34021	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:55843	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:30016	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:32998	P	Security update for python-urllib3 (Moderate)	2021-02-03
oval:org.opensuse.security:def:33620	P	Security update for xen (Important)	2020-12-07
oval:org.opensuse.security:def:29953	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:29299	P	Security update for gdm (Important)	2020-12-03
oval:org.opensuse.security:def:26259	P	Security update for openexr (Moderate)	2020-12-01
oval:org.opensuse.security:def:54893	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27711	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:27177	P	libcap-progs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33223	P	pam_ldap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29580	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30691	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:29217	P	Security update for permissions (Moderate)	2020-12-01
oval:org.opensuse.security:def:26451	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:55165	P	libHX28 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27799	P	Security update for libmspack	2020-12-01
oval:org.opensuse.security:def:57215	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:27252	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33375	P	Security update for IBM Java 1.4.2	2020-12-01
oval:org.opensuse.security:def:29683	P	Security update for ed (Low)	2020-12-01
oval:org.opensuse.security:def:34065	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29229	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:26589	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55558	P	Security update for evolution-data-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:27857	P	Security update for postgresql91	2020-12-01
oval:org.opensuse.security:def:54416	P	ImageMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27462	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29740	P	Security update for freetype2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34743	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:33227	P	pcsc-lite on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26824	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55724	P	Security update for expat (Important)	2020-12-01
oval:org.opensuse.security:def:28530	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:27080	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54578	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27603	P	Security update for Mono	2020-12-01
oval:org.opensuse.security:def:30422	P	Security update for xorg-x11-libXrender (Moderate)	2020-12-01
oval:org.opensuse.security:def:33239	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29573	P	Security update for ant (Moderate)	2020-12-01
oval:org.opensuse.security:def:26926	P	kdebase3-runtime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27092	P	binutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54989	P	procmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27807	P	Security update for poppler	2020-12-01
oval:org.opensuse.security:def:28988	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:33454	P	Security update for gstreamer	2020-12-01
oval:org.opensuse.security:def:29811	P	Security update for jakarta-taglibs-standard (Important)	2020-12-01
oval:org.opensuse.security:def:26979	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54319	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27284	P	radvd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27895	P	Security update for subversion	2020-12-01
oval:org.opensuse.security:def:29068	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:33606	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:29914	P	Security update for libcdio (Low)	2020-12-01
oval:org.opensuse.security:def:27661	P	Security update for ruby	2020-12-01
oval:org.opensuse.security:def:54342	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27423	P	kdebase4-workspace-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55654	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:27953	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:29285	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:33851	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:29972	P	Security update for librsvg	2020-12-01
oval:org.opensuse.security:def:26248	P	Security update for freerdp (Moderate)	2020-12-01
oval:org.opensuse.security:def:54720	P	aaa_base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27658	P	Security update for quagga	2020-12-01
oval:org.opensuse.security:def:55820	P	Security update for freerdp (Moderate)	2020-12-01
oval:org.opensuse.security:def:28626	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:27176	P	libblkid1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30654	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26323	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:54999	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27760	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:27188	P	libgnomesu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33318	P	stunnel-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29634	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:29218	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:26532	P	cron on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55450	P	Security update for libreoffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:27813	P	Security update for librsvg (Important)	2020-12-01
oval:org.opensuse.security:def:57289	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:54415	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27380	P	coolkey-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33463	P	Security update for okular.	2020-12-01
oval:org.opensuse.security:def:29722	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:34703	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26673	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55650	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:28495	P	Recommended update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54438	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27519	P	nagios on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29784	P	Security update for gpg2 (Important)	2020-12-01
oval:org.opensuse.security:def:33228	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29516	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26877	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55762	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27081	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54816	P	kdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27754	P	Recommended update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:30459	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:28987	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:33319	P	vsftpd-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29658	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:26965	P	libproxy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27156	P	kdebase3-runtime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55095	P	dracut on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27856	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33833	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:28999	P	Security update for hawk	2020-12-01
oval:org.opensuse.security:def:33549	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:29865	P	Security update for the Linux Kernel (Moderate)	2020-12-01
oval:org.opensuse.security:def:27023	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54320	P	libtiff5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27366	P	a2ps-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55546	P	Security update for libpng16 (Important)	2020-12-01
oval:org.opensuse.security:def:27909	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:29199	P	Security update for openssh (Important)	2020-12-01
oval:org.opensuse.security:def:27696	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:26247	P	Security update for bluez (Moderate)	2020-12-01
oval:org.opensuse.security:def:54482	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27507	P	libxml2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55746	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:28591	P	Security update for OpenSSH	2020-12-01
oval:org.opensuse.security:def:29342	P	Security update for cobbler (Moderate)	2020-12-01
oval:org.mitre.oval:def:18821	V	Mozilla Updater in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 does not ensure exclusive access to a MAR file, which allows local users to gain privileges by creating a Trojan horse file after MAR signature verification but before MAR use.	2014-10-06
oval:org.mitre.oval:def:25088	P	SUSE-SU-2013:1497-1 -- Security update for Mozilla Firefox	2014-09-08
oval:org.opensuse.security:def:79827	P	Security update for Mozilla Firefox	2013-09-19
oval:org.opensuse.security:def:79923	P	Security update for Mozilla Firefox	2013-09-19