SUSE-SU-2019:0273-1

Опубликовано: 06 фев. 2019

Источник: suse-cvrf

Описание

Security update for MozillaFirefox

This update for MozillaFirefox, mozilla-nss fixes the following issues:

Security issues fixed:

CVE-2018-18500: Fixed a use-after-free parsing HTML5 stream (bsc#1122983).
CVE-2018-18501: Fixed multiple memory safety bugs (bsc#1122983).
CVE-2018-18505: Fixed a privilege escalation through IPC channel messages (bsc#1122983).
CVE-2018-12404: Cache side-channel variant of the Bleichenbacher attack (bsc#1119069).

Non-security issue fixed:

Update to MozillaFirefox ESR 60.5.0
Update to mozilla-nss 3.41.1

Список пакетов

Container bci/openjdk-devel:11

libfreebl3-3.41.1-3.13.1

libfreebl3-hmac-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

libsoftokn3-hmac-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Container bci/openjdk:latest

libfreebl3-3.41.1-3.13.1

libfreebl3-hmac-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

libsoftokn3-hmac-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Container caasp/v4/389-ds:1.4.2

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Container caasp/v4/hyperkube:v1.17.17

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Container ses/6/cephcsi/cephcsi:latest

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Container ses/6/rook/ceph:latest

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Container suse/pcp:latest

libfreebl3-3.41.1-3.13.1

libfreebl3-hmac-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

libsoftokn3-hmac-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-Azure-BYOS

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-EC2-CHOST-HVM-BYOS

libfreebl3-3.41.1-3.13.1

Image SLES15-EC2-HVM-BYOS

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-GCE-BYOS

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-OCI-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SAP-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-Azure-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-Azure-LI-BYOS-Production

MozillaFirefox-60.5.0-3.24.2

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-Azure-VLI-BYOS-Production

MozillaFirefox-60.5.0-3.24.2

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-EC2-HVM-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-GCE-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SAP-OCI-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-Azure-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Azure-HPC-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-CAP-Deployment-BYOS-GCE

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-CHOST-BYOS-Azure

libfreebl3-3.41.1-3.13.1

Image SLES15-SP1-CHOST-BYOS-EC2

libfreebl3-3.41.1-3.13.1

Image SLES15-SP1-CHOST-BYOS-GCE

libfreebl3-3.41.1-3.13.1

Image SLES15-SP1-EC2-HPC-HVM-BYOS

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-EC2-HVM-BYOS

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-GCE-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-OCI-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-SAP-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-Azure-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

MozillaFirefox-60.5.0-3.24.2

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

MozillaFirefox-60.5.0-3.24.2

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-EC2-HVM-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-GCE-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAP-OCI-BYOS

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP1-SAPCAL-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-SAPCAL-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP1-SAPCAL-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Azure-Basic

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Azure-Standard

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-BYOS-Azure

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-BYOS-GCE

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-CAP-Deployment-BYOS-Azure

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-CHOST-BYOS-Aliyun

libfreebl3-3.41.1-3.13.1

Image SLES15-SP2-CHOST-BYOS-Azure

libfreebl3-3.41.1-3.13.1

Image SLES15-SP2-CHOST-BYOS-EC2

libfreebl3-3.41.1-3.13.1

Image SLES15-SP2-CHOST-BYOS-GCE

libfreebl3-3.41.1-3.13.1

Image SLES15-SP2-EC2-ECS-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-EC2-HVM

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-GCE

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-HPC-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-HPC-BYOS-Azure

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-HPC-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP2-SAP-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP2-SAP-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-BYOS-Azure

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-BYOS-EC2-HVM

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-BYOS-GCE

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-EC2-ECS-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-GCE

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-HPC-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-HPC-BYOS-Azure

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-HPC-BYOS-EC2-HVM

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-HPC-BYOS-GCE

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-Micro-BYOS-GCE

libfreebl3-3.41.1-3.13.1

Image SLES15-SP3-SAP-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-SAP-BYOS-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-SAP-BYOS-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-SAP-BYOS-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

Image SLES15-SP3-SAP-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-SAP-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-SAPCAL-Azure

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-SAPCAL-EC2-HVM

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

Image SLES15-SP3-SAPCAL-GCE

libfreebl3-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

SUSE Linux Enterprise Module for Basesystem 15

libfreebl3-3.41.1-3.13.1

libfreebl3-32bit-3.41.1-3.13.1

libfreebl3-hmac-3.41.1-3.13.1

libfreebl3-hmac-32bit-3.41.1-3.13.1

libsoftokn3-3.41.1-3.13.1

libsoftokn3-32bit-3.41.1-3.13.1

libsoftokn3-hmac-3.41.1-3.13.1

libsoftokn3-hmac-32bit-3.41.1-3.13.1

mozilla-nss-3.41.1-3.13.1

mozilla-nss-32bit-3.41.1-3.13.1

mozilla-nss-certs-3.41.1-3.13.1

mozilla-nss-certs-32bit-3.41.1-3.13.1

mozilla-nss-devel-3.41.1-3.13.1

mozilla-nss-sysinit-3.41.1-3.13.1

mozilla-nss-tools-3.41.1-3.13.1

SUSE Linux Enterprise Module for Desktop Applications 15

MozillaFirefox-60.5.0-3.24.2

MozillaFirefox-devel-60.5.0-3.24.2

MozillaFirefox-translations-common-60.5.0-3.24.2

MozillaFirefox-translations-other-60.5.0-3.24.2

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20190273-1/
Link for SUSE-SU-2019:0273-1
https://lists.suse.com/pipermail/sle-security-updates/2019-February/005091.html
E-Mail link for SUSE-SU-2019:0273-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1119069
SUSE Bug 1119069
https://bugzilla.suse.com/1120374
SUSE Bug 1120374
https://bugzilla.suse.com/1122983
SUSE Bug 1122983
https://www.suse.com/security/cve/CVE-2018-12404/
SUSE CVE CVE-2018-12404 page
https://www.suse.com/security/cve/CVE-2018-18500/
SUSE CVE CVE-2018-18500 page
https://www.suse.com/security/cve/CVE-2018-18501/
SUSE CVE CVE-2018-18501 page
https://www.suse.com/security/cve/CVE-2018-18505/
SUSE CVE CVE-2018-18505 page

Описание

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.

Затронутые продукты

Container bci/openjdk-devel:11:libfreebl3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libfreebl3-hmac-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-hmac-3.41.1-3.13.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-12404.html
CVE-2018-12404
https://bugzilla.suse.com/1119069
SUSE Bug 1119069
https://bugzilla.suse.com/1119105
SUSE Bug 1119105
https://bugzilla.suse.com/1121207
SUSE Bug 1121207

Описание

A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the stream parser object being freed while still in use, leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.

Затронутые продукты

Container bci/openjdk-devel:11:libfreebl3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libfreebl3-hmac-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-hmac-3.41.1-3.13.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-18500.html
CVE-2018-18500
https://bugzilla.suse.com/1122983
SUSE Bug 1122983
https://bugzilla.suse.com/986639
SUSE Bug 986639

Описание

Mozilla developers and community members reported memory safety bugs present in Firefox 64 and Firefox ESR 60.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.

Затронутые продукты

Container bci/openjdk-devel:11:libfreebl3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libfreebl3-hmac-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-hmac-3.41.1-3.13.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-18501.html
CVE-2018-18501
https://bugzilla.suse.com/1122983
SUSE Bug 1122983
https://bugzilla.suse.com/986639
SUSE Bug 986639

Описание

An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.

Затронутые продукты

Container bci/openjdk-devel:11:libfreebl3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libfreebl3-hmac-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-3.41.1-3.13.1

Container bci/openjdk-devel:11:libsoftokn3-hmac-3.41.1-3.13.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-18505.html
CVE-2018-18505
https://bugzilla.suse.com/1122983
SUSE Bug 1122983
https://bugzilla.suse.com/986639
SUSE Bug 986639