Vulnerability Name:

CVE-2014-1531 (CCN-92856)

Assigned:2014-04-29
Published:2014-04-29
Updated:2020-08-07
Summary:Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving an imgLoader object that is not properly handled during an image-resize operation.
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-416
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2014-1531

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2014-5833

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2014-5829

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2014:0665

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2014:0727

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2014:0599

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2014:0602

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2014:0629

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2014:0640

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:0448

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:0449

Source: SECUNIA
Type: Broken Link
59866

Source: DEBIAN
Type: Third Party Advisory
DSA-2918

Source: DEBIAN
Type: Third Party Advisory
DSA-2924

Source: CCN
Type: MFSA 2014-44
Use-after-free in imgLoader while resizing images

Source: CONFIRM
Type: Vendor Advisory
http://www.mozilla.org/security/announce/2014/mfsa2014-44.html

Source: CONFIRM
Type: Third Party Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Source: BID
Type: Third Party Advisory, VDB Entry
67134

Source: CCN
Type: BID-67134
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2014-1531 Use After Free Memory Corruption Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1030163

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1030164

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1030165

Source: UBUNTU
Type: Third Party Advisory
USN-2185-1

Source: UBUNTU
Type: Third Party Advisory
USN-2189-1

Source: CONFIRM
Type: Exploit, Issue Tracking, Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=987140

Source: XF
Type: UNKNOWN
firefox-cve20141531-code-exec(92856)

Source: GENTOO
Type: Third Party Advisory
GLSA-201504-01

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-1531

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version < 29.0)
  • OR cpe:/a:mozilla:firefox_esr:*:*:*:*:*:*:*:* (Version >= 24.0 and < 24.5)
  • OR cpe:/a:mozilla:seamonkey:*:*:*:*:*:*:*:* (Version < 2.26)
  • OR cpe:/a:mozilla:thunderbird:*:*:*:*:*:*:*:* (Version < 24.5)

  • Configuration 2:
  • cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

  • Configuration 3:
  • cpe:/o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

  • Configuration 4:
  • cpe:/o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:6.5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

  • Configuration 5:
  • cpe:/o:fedoraproject:fedora:19:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:20:*:*:*:*:*:*:*

  • Configuration 6:
  • cpe:/o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux_enterprise_server:10:sp4:*:*:ltss:*:*:*
  • OR cpe:/o:suse:suse_linux_enterprise_server:11:sp1:*:*:ltss:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

  • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

  • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

  • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

  • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

  • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

  • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

  • Configuration RedHat 9:
  • cpe:/a:redhat:rhel_productivity:5:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:mozilla:firefox:28.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:2.25:-:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox_esr:24.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:24.4.0:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:609
    P
    Security update for sqlite3 (Moderate) (in QA)
    2022-10-04
    oval:org.opensuse.security:def:20141531
    V
    CVE-2014-1531
    2022-06-30
    oval:org.opensuse.security:def:1301
    P
    Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP3) (Important)
    2022-04-14
    oval:org.opensuse.security:def:1693
    P
    Security update for stunnel (Important)
    2022-03-16
    oval:org.opensuse.security:def:111898
    P
    MozillaFirefox-50.1.0-1.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:111904
    P
    MozillaThunderbird-45.5.1-1.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:64678
    P
    Security update for apache2 (Important)
    2022-01-17
    oval:org.opensuse.security:def:113433
    P
    seamonkey-2.40-6.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:33795
    P
    Security update for apache2 (Important)
    2022-01-12
    oval:org.opensuse.security:def:945
    P
    Security update for net-snmp (Important)
    2022-01-11
    oval:org.opensuse.security:def:31755
    P
    Security update for libvirt (Important)
    2022-01-10
    oval:org.opensuse.security:def:29464
    P
    Security update for chrony (Moderate)
    2021-12-22
    oval:org.opensuse.security:def:32252
    P
    Security update for chrony (Moderate)
    2021-12-22
    oval:org.opensuse.security:def:1137
    P
    Security update for the Linux Kernel (Important)
    2021-11-16
    oval:org.opensuse.security:def:33993
    P
    Security update for tomcat (Important)
    2021-11-03
    oval:org.opensuse.security:def:55264
    P
    Security update for binutils (Moderate)
    2021-11-02
    oval:org.opensuse.security:def:33732
    P
    Security update for opensc (Important)
    2021-10-29
    oval:org.opensuse.security:def:33034
    P
    Security update for opensc (Important)
    2021-10-29
    oval:org.opensuse.security:def:32203
    P
    Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)
    2021-10-18
    oval:org.opensuse.security:def:33729
    P
    Security update for MozillaFirefox (Important)
    2021-10-15
    oval:org.opensuse.security:def:29433
    P
    Security update for xen (Moderate)
    2021-10-07
    oval:org.opensuse.security:def:106834
    P
    seamonkey-2.40-6.1 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:105475
    P
    MozillaFirefox-50.1.0-1.1 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:105477
    P
    MozillaThunderbird-45.5.1-1.1 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:33015
    P
    Security update for atftp (Moderate)
    2021-09-27
    oval:org.opensuse.security:def:71352
    P
    openssh-7.9p1-4.7 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:33003
    P
    Security update for postgresql13 (Moderate)
    2021-09-16
    oval:org.opensuse.security:def:33004
    P
    Security update for transfig (Moderate)
    2021-09-16
    oval:org.opensuse.security:def:64765
    P
    Security update for ghostscript (Critical)
    2021-09-15
    oval:org.opensuse.security:def:26115
    P
    Security update for libesmtp (Important)
    2021-09-02
    oval:org.opensuse.security:def:32995
    P
    Security update for file (Important)
    2021-09-02
    oval:org.opensuse.security:def:55942
    P
    Security update for aspell (Important)
    2021-08-25
    oval:org.opensuse.security:def:34517
    P
    Security update for openssl-1_1 (Important)
    2021-08-24
    oval:org.opensuse.security:def:48191
    P
    libsmi-0.4.8-18.55 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47755
    P
    libopenssl1_1-1.1.1-1.9 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47130
    P
    powerpc-utils-1.3.2-17.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47673
    P
    libXdmcp6-1.1.1-12.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47591
    P
    dbus-1-1.8.22-29.10.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48256
    P
    pam_krb5-2.4.4-4.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47948
    P
    apache-commons-httpclient-3.1-4.364 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47131
    P
    ppc64-diag-2.7.1-5.6 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47794
    P
    libtasn1-4.9-3.5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47619
    P
    giflib-progs-5.0.5-12.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47683
    P
    libXrender1-0.9.8-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48287
    P
    python-pywbem-0.7.0-4.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48080
    P
    libXinerama1-1.1.3-3.54 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47145
    P
    rpcbind-0.2.3-21.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47987
    P
    cyrus-sasl-2.1.26-8.7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47620
    P
    git-core-2.12.3-27.14.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47831
    P
    mutt-1.10.1-55.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47658
    P
    krb5-1.12.5-40.28.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48358
    P
    zypper-1.13.51-21.26.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48172
    P
    libpng12-0-1.2.50-19.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47266
    P
    glib2-lang-2.48.2-10.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48119
    P
    libgraphite2-3-1.3.1-10.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48129
    P
    libjansson4-2.12-3.5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47634
    P
    gstreamer-plugins-base-1.8.3-12.11 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48045
    P
    ibus-chewing-1.4.14-4.11 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47659
    P
    krb5-appl-clients-1.0.3-1.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48320
    P
    sysvinit-tools-2.88+-101.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47459
    P
    pam_krb5-2.4.4-4.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48211
    P
    libunwind-1.1-11.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:1098
    P
    libopenjp2-7-2.3.0-1.25 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:1732
    P
    open-vm-tools-desktop-11.2.5-1.17 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:32147
    P
    Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)
    2021-07-21
    oval:org.opensuse.security:def:68012
    P
    Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)
    2021-07-14
    oval:org.opensuse.security:def:33683
    P
    Security update for libsolv (Important)
    2021-06-28
    oval:org.opensuse.security:def:32117
    P
    Security update for caribou (Important)
    2021-06-10
    oval:org.opensuse.security:def:48815
    P
    raptor-2.0.10-3.67 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48618
    P
    rsyslog-8.4.0-14.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48534
    P
    libpng12-0-1.2.50-13.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48359
    P
    DirectFB-1.7.1-6.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48886
    P
    telepathy-gabble-0.18.3-5.7 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48680
    P
    libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:2435
    P
    MozillaThunderbird-52.8-1.2 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48657
    P
    yast2-3.1.206-36.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48573
    P
    libzip2-0.11.1-12.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:42478
    P
    MozillaFirefox-31.7.0esr-0.8.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36071
    P
    MozillaFirefox-31.7.0esr-0.8.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48745
    P
    libsilc-1_1-2-1.1.10-24.128 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48719
    P
    freerdp-1.0.2-7.9 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48776
    P
    gnome-shell-calendar-3.20.4-70.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36362
    P
    MozillaFirefox-devel-31.7.0esr-0.8.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48784
    P
    libFLAC++6-32bit-1.3.0-11.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48847
    P
    lhasa-0.2.0-5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:63524
    P
    MozillaThunderbird-52.8-1.2 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:32105
    P
    Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:32106
    P
    Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:32932
    P
    Security update for dhcp (Important)
    2021-06-01
    oval:org.opensuse.security:def:31623
    P
    Security update for libxml2 (Important)
    2021-05-19
    oval:org.opensuse.security:def:26046
    P
    Security update for libxml2 (Moderate)
    2021-05-05
    oval:org.opensuse.security:def:33641
    P
    Security update for permissions (Important)
    2021-04-29
    oval:org.opensuse.security:def:29348
    P
    Security update for sudo (Important)
    2021-04-20
    oval:org.opensuse.security:def:30052
    P
    Security update for MozillaFirefox (Important)
    2021-03-31
    oval:org.opensuse.security:def:68112
    P
    Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)
    2021-03-17
    oval:org.opensuse.security:def:33094
    P
    Security update for apache2 (Moderate)
    2021-03-12
    oval:org.opensuse.security:def:55861
    P
    Security update for git (Important)
    2021-03-09
    oval:org.opensuse.security:def:34032
    P
    Security update for MozillaFirefox (Important)
    2021-03-01
    oval:org.opensuse.security:def:33771
    P
    Security update for java-1_8_0-ibm (Important)
    2021-02-26
    oval:org.opensuse.security:def:26197
    P
    Security update for postgresql13 (Moderate)
    2021-02-22
    oval:org.opensuse.security:def:26196
    P
    Security update for ImageMagick (Moderate)
    2021-02-19
    oval:org.opensuse.security:def:33944
    P
    Security update for MozillaFirefox (Important)
    2021-01-29
    oval:org.opensuse.security:def:34477
    P
    Security update for postgresql, postgresql12, postgresql13 (Important)
    2021-01-26
    oval:org.opensuse.security:def:30008
    P
    Security update for postgresql, postgresql12, postgresql13 (Important)
    2021-01-26
    oval:org.opensuse.security:def:32192
    P
    Security update for java-1_8_0-ibm (Moderate)
    2021-01-05
    oval:org.opensuse.security:def:33886
    P
    Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:33626
    P
    Security update for xen (Moderate)
    2020-12-22
    oval:org.opensuse.security:def:29950
    P
    Security update for mutt (Important)
    2020-12-07
    oval:org.opensuse.security:def:72109
    P
    MozillaFirefox-52.7.3-1.35 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103747
    P
    MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63563
    P
    MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71465
    P
    cups-filters-1.25.0-1.107 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:90092
    P
    MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2474
    P
    MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62390
    P
    MozillaFirefox-52.7.3-1.35 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:28095
    P
    Security update for giflib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27191
    P
    libjasper on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29205
    P
    Security update for openssl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55098
    P
    elfutils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32720
    P
    libnetpbm10 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49332
    P
    socat on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33262
    P
    stunnel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25962
    P
    Security update for mariadb (Important)
    2020-12-01
    oval:org.opensuse.security:def:26827
    P
    sysstat on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29689
    P
    Security update for evince (Important)
    2020-12-01
    oval:org.opensuse.security:def:28096
    P
    Security update for giflib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29333
    P
    Security update for compat-openssl097g (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31847
    P
    Security update for clamav (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33469
    P
    Security update for Kerberos
    2020-12-01
    oval:org.opensuse.security:def:26352
    P
    Security update for Mozilla Thunderbird (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27325
    P
    xen on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49386
    P
    MozillaFirefox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27606
    P
    Security update for curl
    2020-12-01
    oval:org.opensuse.security:def:29901
    P
    Security update for krb5
    2020-12-01
    oval:org.opensuse.security:def:32291
    P
    Security update for postgresql94 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33839
    P
    Security update for graphviz (Low)
    2020-12-01
    oval:org.opensuse.security:def:30465
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:54441
    P
    cron on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32326
    P
    Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:26629
    P
    perl-Tk on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27956
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25911
    P
    Security update for gstreamer-plugins-base (Low)
    2020-12-01
    oval:org.opensuse.security:def:25632
    P
    Security update for aspell (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26454
    P
    Security update for python-Jinja2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28444
    P
    Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:29846
    P
    Security update for Linux kernel
    2020-12-01
    oval:org.opensuse.security:def:32826
    P
    ant on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34057
    P
    Security update for libvorbis (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33570
    P
    Security update for LibVNCServer (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31538
    P
    Security update for samba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26929
    P
    kdenetwork4-filesharing on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28839
    P
    Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30428
    P
    Security update for xorg-x11-libs (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25912
    P
    Security update for zziplib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27255
    P
    opie on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29291
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:33609
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:33273
    P
    tftp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27810
    P
    Security update for libqt4
    2020-12-01
    oval:org.opensuse.security:def:29728
    P
    Security update for MozillaFirefox, firefox-glib2, firefox-gtk3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:27699
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:28993
    P
    Security update for xscreensaver (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28107
    P
    Security update for glibc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31904
    P
    Security update for foomatic-filters (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26396
    P
    Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:50080
    P
    libvirt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26253
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:27757
    P
    Security update for glibc (Important)
    2020-12-01
    oval:org.opensuse.security:def:32313
    P
    Security update for quagga (Important)
    2020-12-01
    oval:org.opensuse.security:def:28994
    P
    Security update for conntrack-tools (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:54581
    P
    libopenssl0_9_8 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32420
    P
    Security update for wireshark (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26643
    P
    systemtap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27664
    P
    Security update for rubygem-actionpack-2_3
    2020-12-01
    oval:org.opensuse.security:def:50134
    P
    MozillaThunderbird on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25696
    P
    Security update for sudo (Important)
    2020-12-01
    oval:org.opensuse.security:def:26535
    P
    cyrus-imapd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28528
    P
    Security update for ImageMagick
    2020-12-01
    oval:org.opensuse.security:def:55657
    P
    Security update for rsync (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32865
    P
    fvwm2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34101
    P
    Security update for mono-core (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30727
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:31549
    P
    Security update for screen (Low)
    2020-12-01
    oval:org.opensuse.security:def:33229
    P
    perl-HTML-Parser on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26968
    P
    librpcsecgss on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28883
    P
    Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:26250
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25923
    P
    Security update for util-linux (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27383
    P
    ctdb-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55549
    P
    Security update for ruby2.1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33353
    P
    Security update for openssl1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:27859
    P
    Security update for postgresql91 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29746
    P
    Security update for gd
    2020-12-01
    oval:org.opensuse.security:def:30690
    P
    Security update for Mesa (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26251
    P
    Security update for zziplib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28172
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:29551
    P
    Security update for MozillaFirefox (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31991
    P
    Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:26337
    P
    Security update for freexl (Low)
    2020-12-01
    oval:org.opensuse.security:def:28734
    P
    Security update for kvm (Important)
    2020-12-01
    oval:org.opensuse.security:def:29989
    P
    Security update for libssh2_org (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32357
    P
    Security update for squid3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:28629
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:29251
    P
    Security update for syslog-ng (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29005
    P
    Security update for ctdb (Important)
    2020-12-01
    oval:org.opensuse.security:def:54819
    P
    krb5-appl-clients on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32477
    P
    Security update for zlib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26687
    P
    e2fsprogs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50119
    P
    apache2-mod_php7 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25824
    P
    Security update for mariadb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26592
    P
    libneon27 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28680
    P
    Security update for flash-player
    2020-12-01
    oval:org.opensuse.security:def:55749
    P
    Security update for xscreensaver (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32888
    P
    jpeg on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:57218
    P
    Security update for ghostscript
    2020-12-01
    oval:org.opensuse.security:def:29252
    P
    Security update for tar (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33324
    P
    Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26299
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26982
    P
    libxslt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28594
    P
    Security update for Perl
    2020-12-01
    oval:org.opensuse.security:def:50173
    P
    MozillaThunderbird on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25987
    P
    Security update for the Linux Kernel (Critical)
    2020-12-01
    oval:org.opensuse.security:def:27465
    P
    libneon-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:57292
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:54418
    P
    NetworkManager on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33488
    P
    Security update for Python
    2020-12-01
    oval:org.opensuse.security:def:26541
    P
    evince on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27898
    P
    Security update for wireshark
    2020-12-01
    oval:org.opensuse.security:def:29790
    P
    Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27069
    P
    MozillaFirefox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27179
    P
    libdrm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26262
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:28302
    P
    Security update for libtasn1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29608
    P
    Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:34739
    P
    Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:26488
    P
    Security update for cacti, cacti-spine (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28783
    P
    Security update for lxc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27180
    P
    libecpg6 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29074
    P
    Security update for cups (Important)
    2020-12-01
    oval:org.opensuse.security:def:54992
    P
    python-cupshelpers on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32564
    P
    libpython2_6-1_0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27034
    P
    stunnel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34779
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:33261
    P
    strongswan on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25905
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:26676
    P
    cifs-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29640
    P
    Security update for cracklib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55823
    P
    Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29557
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:29263
    P
    Security update for wpa_supplicant (Important)
    2020-12-01
    oval:org.opensuse.security:def:33381
    P
    Security update for clamsap (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26338
    P
    Security update for Chromium (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27026
    P
    rsyslog on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25620
    P
    Security update for ovmf (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27522
    P
    obex-data-server on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29586
    P
    Security update for apache2-mod_nss (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:54419
    P
    aaa_base on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33584
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26590
    P
    libmusicbrainz4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27912
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:29521
    P
    Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:25621
    P
    Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:26326
    P
    Security update for MozillaThunderbird (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28387
    P
    Security update for rubygem-rack-1_4 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29693
    P
    Security update for expat (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32777
    P
    python-sssd-config on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31537
    P
    Security update for samba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26880
    P
    cyrus-imapd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28822
    P
    Security update for python-lxml
    2020-12-01
    oval:org.opensuse.security:def:27360
    P
    MozillaFirefox-devel on GA media (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:25349
    P
    SUSE-SU-2014:0727-1 -- Security update for Mozilla Firefox
    2015-03-16
    oval:org.mitre.oval:def:25177
    P
    SUSE-SU-2014:0638-1 -- Security update for Mozilla Firefox
    2015-03-16
    oval:org.mitre.oval:def:25501
    P
    SUSE-SU-2014:0665-1 -- Security update for Mozilla Firefox
    2015-03-16
    oval:org.mitre.oval:def:25227
    P
    SUSE-SU-2014:0638-2 -- Security update for Mozilla Firefox
    2015-03-16
    oval:org.mitre.oval:def:25341
    P
    SUSE-SU-2014:0665-2 -- Security update for Mozilla Firefox
    2015-03-16
    oval:org.mitre.oval:def:24507
    V
    Use-after-free in imgLoader while resizing images
    2014-10-06
    oval:org.mitre.oval:def:24708
    P
    ELSA-2014:0449: thunderbird security update (Important)
    2014-07-21
    oval:org.mitre.oval:def:24349
    P
    ELSA-2014:0448: firefox security update (Critical)
    2014-07-21
    oval:org.mitre.oval:def:24839
    P
    USN-2185-1 -- firefox vulnerabilities
    2014-07-07
    oval:org.mitre.oval:def:24581
    P
    USN-2189-1 -- thunderbird vulnerabilities
    2014-07-07
    oval:org.mitre.oval:def:24829
    P
    RHSA-2014:0449: thunderbird security update (Important)
    2014-06-30
    oval:org.mitre.oval:def:24845
    P
    RHSA-2014:0448: firefox security update (Critical)
    2014-06-30
    oval:org.opensuse.security:def:79926
    P
    Security update for Mozilla Firefox
    2014-05-01
    oval:com.ubuntu.precise:def:20141531000
    V
    CVE-2014-1531 on Ubuntu 12.04 LTS (precise) - medium.
    2014-04-30
    oval:com.ubuntu.trusty:def:20141531000
    V
    CVE-2014-1531 on Ubuntu 14.04 LTS (trusty) - medium.
    2014-04-30
    oval:com.redhat.rhsa:def:20140448
    P
    RHSA-2014:0448: firefox security update (Critical)
    2014-04-29
    oval:com.redhat.rhsa:def:20140449
    P
    RHSA-2014:0449: thunderbird security update (Important)
    2014-04-29
    BACK
    mozilla firefox *
    mozilla firefox esr *
    mozilla seamonkey *
    mozilla thunderbird *
    canonical ubuntu linux 12.04
    canonical ubuntu linux 12.10
    canonical ubuntu linux 13.10
    canonical ubuntu linux 14.04
    debian debian linux 7.0
    debian debian linux 8.0
    redhat enterprise linux desktop 5.0
    redhat enterprise linux desktop 6.0
    redhat enterprise linux eus 6.5
    redhat enterprise linux server 5.0
    redhat enterprise linux server 6.0
    redhat enterprise linux server aus 6.5
    redhat enterprise linux server eus 6.5
    redhat enterprise linux server tus 6.5
    redhat enterprise linux workstation 5.0
    redhat enterprise linux workstation 6.0
    fedoraproject fedora 19
    fedoraproject fedora 20
    opensuse opensuse 11.4
    opensuse opensuse 12.3
    opensuse opensuse 13.1
    suse suse linux enterprise server 10 sp4
    suse suse linux enterprise server 11 sp1
    mozilla firefox 28.0
    mozilla seamonkey 2.25 -
    mozilla firefox esr 24.4
    mozilla thunderbird 24.4.0