ID ASA-201611-16 Type archlinux Reporter Arch Linux Modified 2016-11-16T00:00:00
Description
CVE-2016-5289 (arbitrary code execution)
Mozilla developers and community members Christian Holler, Andrew
McCreight, Dan Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey,
Jesse Ruderman, and Markus Stange reported memory safety bugs present
in Firefox 49. Some of these bugs showed evidence of memory corruption
and we presume that with enough effort that some of these could be
exploited to run arbitrary code.
CVE-2016-5290 (arbitrary code execution)
Mozilla developers and community members Olli Pettay, Christian Holler,
Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and
Randell Jesup reported memory safety bugs present in Firefox 49 and
Firefox ESR 45.4. Some of these bugs showed evidence of memory
corruption and we presume that with enough effort that some of these
could be exploited to run arbitrary code.
CVE-2016-5291 (same-origin policy bypass)
A same-origin policy bypass with local shortcut files to load arbitrary
local content from disk.
CVE-2016-5292 (arbitrary code execution)
During URL parsing, a maliciously crafted URL can cause a potentially
exploitable crash.
CVE-2016-5296 (arbitrary code execution)
A heap-buffer-overflow in Cairo when processing SVG content caused by
compiler optimization, resulting in a potentially exploitable crash.
CVE-2016-5297 (arbitrary code execution)
An error in argument length checking in JavaScript, leading to
potential integer overflows or other bounds checking issues.
CVE-2016-9063 (arbitrary code execution)
An integer overflow during the parsing of XML using the Expat library.
CVE-2016-9064 (insufficient validation)
Add-on updates failed to verify that the add-on ID inside the signed
package matched the ID of the add-on being updated. An attacker who
could perform a man-in-the-middle attack on the user's connection to
the update server and defeat the certificate pinning protection could
provide a malicious signed add-on instead of a valid update.
CVE-2016-9066 (arbitrary code execution)
A buffer overflow resulting in a potentially exploitable crash due to
memory allocation issues when handling large amounts of incoming data.
CVE-2016-9067 (arbitrary code execution)
Two heap-use-after-free errors during DOM operations in
nsINode::ReplaceOrInsertBefore resulting in potentially exploitable
crashes.
CVE-2016-9068 (arbitrary code execution)
A heap-use-after-free in nsRefreshDriver during web animations when
working with timelines resulting in a potentially exploitable crash.
CVE-2016-9070 (same-origin policy bypass)
A maliciously crafted page loaded to the sidebar through a bookmark can
reference a privileged chrome window and engage in limited JavaScript
operations violating cross-origin protections.
CVE-2016-9071 (information disclosure)
Content Security Policy combined with HTTP to HTTPS redirection can be
used by malicious server to verify whether a known site is within a
user's browser history.
CVE-2016-9073 (sandbox escape)
WebExtensions can bypass security checks to load privileged URLs and
potentially escape the WebExtension sandbox.
CVE-2016-9075 (privilege escalation)
An issue where WebExtensions can use the mozAddonManager API to elevate
privilege due to privileged pages being allowed in the permissions
list. This allows a malicious extension to then install additional
extensions without explicit user permission.
CVE-2016-9076 (content spoofing)
An issue where a <select> dropdown menu can be used to cover location
bar content, resulting in potential spoofing attacks. This attack
requires e10s to be enabled in order to function.
CVE-2016-9077 (information disclosure)
Canvas allows the use of the feDisplacementMap filter on images loaded
cross-origin. The rendering by the filter is variable depending on the
input pixel, allowing for timing attacks when the images are loaded
from third party locations.
{"title": "firefox: multiple issues", "published": "2016-11-16T00:00:00", "type": "archlinux", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9066", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9066", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5296", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9076", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9076", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9068", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9071", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9064", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9070", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9071", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5291", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9077", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5297", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9067", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5292", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5292", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5289", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5297", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9064", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9068", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9063", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9067", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9075", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5290", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5291", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9073", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9075", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9073", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-9070", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5290", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9077", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5289", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/#CVE-2016-5296"], "enchantments": {"score": {"value": 9.3, "vector": "NONE"}, "vulnersScore": 9.3}, "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "viewCount": 489, "hash": "8b4c2dc8b19b5979a042e7354f2b770453a36fc15143b7f404ea36f0a46ec778", "id": "ASA-201611-16", "modified": "2016-11-16T00:00:00", "history": [], "href": "https://lists.archlinux.org/pipermail/arch-security/2016-November/000763.html", "hashmap": [{"hash": "6d63ff60a992a4c8a13c80a0fe757a38", "key": "affectedPackage"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "7b5fcdc6354d7de37bbe03ae2511d559", "key": "cvelist"}, {"hash": "d4be9c4fc84262b4f39f89565918568f", "key": "cvss"}, {"hash": "848706a1b187a204b458fe5afc1e97da", "key": "description"}, {"hash": "a246c27ab7ffd4eaf10404c06c35577d", "key": "href"}, {"hash": "fdc06ab1ee9b44b3d0ef47cf0af1be3a", "key": "modified"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "fdc06ab1ee9b44b3d0ef47cf0af1be3a", "key": "published"}, {"hash": "7696192f5e0ef8a33c52ef5f75263de3", "key": "references"}, {"hash": "ad4f3f64ec0b99ddb498b4c19d7c45be", "key": "reporter"}, {"hash": "5c0a0930e4fa4d12c3d109b441efea06", "key": "title"}, {"hash": "97b7ea39a0d325698668a38eb5f0e5da", "key": "type"}], "objectVersion": "1.2", "edition": 1, "affectedPackage": [{"OS": "any", "arch": "any", "operator": "lt", "packageVersion": "50.0-1", "packageName": "firefox", "OSVersion": "any", "packageFilename": "UNKNOWN"}], "description": "- CVE-2016-5289 (arbitrary code execution)\n\nMozilla developers and community members Christian Holler, Andrew\nMcCreight, Dan Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey,\nJesse Ruderman, and Markus Stange reported memory safety bugs present\nin Firefox 49. Some of these bugs showed evidence of memory corruption\nand we presume that with enough effort that some of these could be\nexploited to run arbitrary code.\n\n- CVE-2016-5290 (arbitrary code execution)\n\nMozilla developers and community members Olli Pettay, Christian Holler,\nEhsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and\nRandell Jesup reported memory safety bugs present in Firefox 49 and\nFirefox ESR 45.4. Some of these bugs showed evidence of memory\ncorruption and we presume that with enough effort that some of these\ncould be exploited to run arbitrary code.\n\n- CVE-2016-5291 (same-origin policy bypass)\n\nA same-origin policy bypass with local shortcut files to load arbitrary\nlocal content from disk.\n\n- CVE-2016-5292 (arbitrary code execution)\n\nDuring URL parsing, a maliciously crafted URL can cause a potentially\nexploitable crash.\n\n- CVE-2016-5296 (arbitrary code execution)\n\nA heap-buffer-overflow in Cairo when processing SVG content caused by\ncompiler optimization, resulting in a potentially exploitable crash.\n\n- CVE-2016-5297 (arbitrary code execution)\n\nAn error in argument length checking in JavaScript, leading to\npotential integer overflows or other bounds checking issues.\n\n- CVE-2016-9063 (arbitrary code execution)\n\nAn integer overflow during the parsing of XML using the Expat library.\n\n- CVE-2016-9064 (insufficient validation)\n\nAdd-on updates failed to verify that the add-on ID inside the signed\npackage matched the ID of the add-on being updated. An attacker who\ncould perform a man-in-the-middle attack on the user's connection to\nthe update server and defeat the certificate pinning protection could\nprovide a malicious signed add-on instead of a valid update.\n\n- CVE-2016-9066 (arbitrary code execution)\n\nA buffer overflow resulting in a potentially exploitable crash due to\nmemory allocation issues when handling large amounts of incoming data.\n\n- CVE-2016-9067 (arbitrary code execution)\n\nTwo heap-use-after-free errors during DOM operations in\nnsINode::ReplaceOrInsertBefore resulting in potentially exploitable\ncrashes.\n\n- CVE-2016-9068 (arbitrary code execution)\n\nA heap-use-after-free in nsRefreshDriver during web animations when\nworking with timelines resulting in a potentially exploitable crash.\n\n- CVE-2016-9070 (same-origin policy bypass)\n\nA maliciously crafted page loaded to the sidebar through a bookmark can\nreference a privileged chrome window and engage in limited JavaScript\noperations violating cross-origin protections.\n\n- CVE-2016-9071 (information disclosure)\n\nContent Security Policy combined with HTTP to HTTPS redirection can be\nused by malicious server to verify whether a known site is within a\nuser's browser history.\n\n- CVE-2016-9073 (sandbox escape)\n\nWebExtensions can bypass security checks to load privileged URLs and\npotentially escape the WebExtension sandbox.\n\n- CVE-2016-9075 (privilege escalation)\n\nAn issue where WebExtensions can use the mozAddonManager API to elevate\nprivilege due to privileged pages being allowed in the permissions\nlist. This allows a malicious extension to then install additional\nextensions without explicit user permission.\n\n- CVE-2016-9076 (content spoofing)\n\nAn issue where a <select> dropdown menu can be used to cover location\nbar content, resulting in potential spoofing attacks. This attack\nrequires e10s to be enabled in order to function.\n\n- CVE-2016-9077 (information disclosure)\n\nCanvas allows the use of the feDisplacementMap filter on images loaded\ncross-origin. The rendering by the filter is variable depending on the\ninput pixel, allowing for timing attacks when the images are loaded\nfrom third party locations.", "bulletinFamily": "unix", "reporter": "Arch Linux", "cvss": {"vector": "NONE", "score": 0.0}, "lastseen": "2016-11-16T17:23:03"}
{"openvas": [{"lastseen": "2018-12-04T13:32:19", "references": ["2016:2861_1"], "pluginID": "1361412562310851435", "description": "The remote host is missing an update for the ", "edition": 11, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-19T00:00:00", "title": "SuSE Update for MozillaFirefox, mozilla-nss openSUSE-SU-2016:2861-1 (MozillaFirefox, mozilla-nss)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-12-04T00:00:00", "id": "OPENVAS:1361412562310851435", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310851435", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2016_2861_1.nasl 12637 2018-12-04 08:36:44Z mmartin $\n#\n# SuSE Update for MozillaFirefox, mozilla-nss openSUSE-SU-2016:2861-1 (MozillaFirefox, mozilla-nss)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.851435\");\n script_version(\"$Revision: 12637 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-12-04 09:36:44 +0100 (Tue, 04 Dec 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-19 05:37:18 +0100 (Sat, 19 Nov 2016)\");\n script_cve_id(\"CVE-2016-5289\", \"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5292\",\n \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9063\", \"CVE-2016-9064\",\n \"CVE-2016-9066\", \"CVE-2016-9067\", \"CVE-2016-9068\", \"CVE-2016-9069\",\n \"CVE-2016-9070\", \"CVE-2016-9071\", \"CVE-2016-9073\", \"CVE-2016-9074\",\n \"CVE-2016-9075\", \"CVE-2016-9076\", \"CVE-2016-9077\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for MozillaFirefox, mozilla-nss openSUSE-SU-2016:2861-1 (MozillaFirefox, mozilla-nss)\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"This update to Mozilla Firefox 50.0 fixes a number of security issues.\n\n The following vulnerabilities were fixed in Mozilla Firefox (MFSA 2016-89):\n\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bmo#1292443)\n\n - CVE-2016-5292: URL parsing causes crash (bmo#1288482)\n\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bmo#1303678)\n\n - CVE-2016-9064: Addons update must verify IDs match between current and\n new versions (bmo#1303418)\n\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bmo#1299686)\n\n - CVE-2016-9067: heap-use-after-free in nsINode::ReplaceOrInsertBefore\n (bmo#1301777, bmo#1308922 (CVE-2016-9069))\n\n - CVE-2016-9068: heap-use-after-free in nsRefreshDriver (bmo#1302973)\n\n - CVE-2016-9075: WebExtensions can access the mozAddonManager API and use\n it to gain elevated privileges (bmo#1295324)\n\n - CVE-2016-9077: Canvas filters allow feDisplacementMaps to be applied to\n cross-origin images, allowing timing attacks on them (bmo#1298552)\n\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bmo#1292159)\n\n - CVE-2016-9070: Sidebar bookmark can have reference to chrome window\n (bmo#1281071)\n\n - CVE-2016-9073: windows.create schema doesn't specify 'format':\n 'relativeUrl' (bmo#1289273)\n\n - CVE-2016-9076: select dropdown menu can be used for URL bar spoofing on\n e10s (bmo#1276976)\n\n - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse in\n expat (bmo#1274777)\n\n - CVE-2016-9071: Probe browser history via HSTS/301 redirect + CSP\n (bmo#1285003)\n\n - CVE-2016-5289: Memory safety bugs fixed in Firefox 50\n\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5\n\n The following vulnerabilities were fixed in Mozilla NSS 3.26.1:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler\n (bmo#1293334)\n\n Mozilla Firefox now requires mozilla-nss 3.26.2.\n\n New features in Mozilla Firefox:\n\n - Updates to keyboard shortcuts Set a preference to have Ctrl+Tab cycle\n through tabs in recently used order View a page in Reader Mode by using\n Ctrl+Alt+R\n\n - Added option to Find in page that allows users to limit search to whole\n words only\n\n - Added download protection for a large number of executable file types on\n Windows, Mac and Linux\n\n - Fixed rendering of dashed and dotted borders with rounded corners\n (border-radius)\n\n - Added a built-in Emoji set for operating systems without native Emoji\n fonts\n\n - Blocked versions of libavcodec older than 54.35.1\n\n - additional locale\n\n mozi ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"affected\", value:\"MozillaFirefox, mozilla-nss on openSUSE Leap 42.1, openSUSE 13.2\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2016:2861_1\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'MozillaFirefox, mozilla-nss'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=openSUSE13\\.2\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\nres = \"\";\n\nif(release == \"openSUSE13.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox\", rpm:\"MozillaFirefox~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-branding-upstream\", rpm:\"MozillaFirefox-branding-upstream~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-buildsymbols\", rpm:\"MozillaFirefox-buildsymbols~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-debuginfo\", rpm:\"MozillaFirefox-debuginfo~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-debugsource\", rpm:\"MozillaFirefox-debugsource~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-devel\", rpm:\"MozillaFirefox-devel~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-translations-common\", rpm:\"MozillaFirefox-translations-common~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"MozillaFirefox-translations-other\", rpm:\"MozillaFirefox-translations-other~50.0~88.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libfreebl3\", rpm:\"libfreebl3~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libfreebl3-debuginfo\", rpm:\"libfreebl3-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libsoftokn3\", rpm:\"libsoftokn3~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libsoftokn3-debuginfo\", rpm:\"libsoftokn3-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss\", rpm:\"mozilla-nss~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-certs\", rpm:\"mozilla-nss-certs~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-certs-debuginfo\", rpm:\"mozilla-nss-certs-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-debuginfo\", rpm:\"mozilla-nss-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-debugsource\", rpm:\"mozilla-nss-debugsource~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-devel\", rpm:\"mozilla-nss-devel~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-sysinit\", rpm:\"mozilla-nss-sysinit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-sysinit-debuginfo\", rpm:\"mozilla-nss-sysinit-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-tools\", rpm:\"mozilla-nss-tools~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-tools-debuginfo\", rpm:\"mozilla-nss-tools-debuginfo~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libfreebl3-32bit\", rpm:\"libfreebl3-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libfreebl3-debuginfo-32bit\", rpm:\"libfreebl3-debuginfo-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libsoftokn3-32bit\", rpm:\"libsoftokn3-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libsoftokn3-debuginfo-32bit\", rpm:\"libsoftokn3-debuginfo-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-32bit\", rpm:\"mozilla-nss-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-certs-32bit\", rpm:\"mozilla-nss-certs-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-certs-debuginfo-32bit\", rpm:\"mozilla-nss-certs-debuginfo-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-debuginfo-32bit\", rpm:\"mozilla-nss-debuginfo-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-sysinit-32bit\", rpm:\"mozilla-nss-sysinit-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"mozilla-nss-sysinit-debuginfo-32bit\", rpm:\"mozilla-nss-sysinit-debuginfo-32bit~3.26.2~49.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:37:24", "references": ["http://www.mozilla.com/en-US/firefox/all.html", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/"], "pluginID": "1361412562310809805", "description": "This host is installed with\n Mozilla Firefox and is prone to multiple vulnerabilities.", "edition": 9, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-16T00:00:00", "title": "Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-Windows", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5295", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-5293", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-10-18T00:00:00", "id": "OPENVAS:1361412562310809805", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310809805", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_mozilla_firefox_mfsa_2016-89_2016-90_win.nasl 11969 2018-10-18 14:53:42Z asteins $\n#\n# Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-Windows\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:mozilla:firefox\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.809805\");\n script_version(\"$Revision: 11969 $\");\n script_cve_id(\"CVE-2016-5296\", \"CVE-2016-5292\", \"CVE-2016-5293\", \"CVE-2016-5294\",\n\t\t\"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\", \"CVE-2016-9067\",\n \"CVE-2016-5290\", \"CVE-2016-9068\", \"CVE-2016-5289\", \"CVE-2016-9075\",\n \"CVE-2016-9077\", \"CVE-2016-5291\", \"CVE-2016-5295\", \"CVE-2016-9070\",\n \"CVE-2016-9073\", \"CVE-2016-9074\", \"CVE-2016-9076\", \"CVE-2016-9063\",\n \"CVE-2016-9071\");\n script_bugtraq_id(94336, 94337, 94342, 94339);\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-18 16:53:42 +0200 (Thu, 18 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-16 12:21:41 +0530 (Wed, 16 Nov 2016)\");\n script_name(\"Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-Windows\");\n\n script_tag(name:\"summary\", value:\"This host is installed with\n Mozilla Firefox and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exist due to,\n\n - Heap-buffer-overflow WRITE in rasterize_edges_1.\n\n - URL parsing causes crash.\n\n - Write to arbitrary file with Mozilla Updater and Maintenance Service using\n updater.log hardlink.\n\n - Arbitrary target directory for result files of update process.\n\n - Incorrect argument length checking in JavaScript.\n\n - Add-ons update must verify IDs match between current and new versions.\n\n - Integer overflow leading to a buffer overflow in nsScriptLoadHandler.\n\n - heap-use-after-free in nsINode::ReplaceOrInsertBefore.\n\n - heap-use-after-free in nsRefreshDriver.\n\n - WebExtensions can access the mozAddonManager API and use it to gain elevated\n privileges.\n\n - Canvas filters allow feDisplacementMaps to be applied to cross-origin images,\n allowing timing attacks on them.\n\n - Same-origin policy violation using local HTML file and saved shortcut file.\n\n - Mozilla Maintenance Service: Ability to read arbitrary files as SYSTEM.\n\n - Sidebar bookmark can have reference to chrome window.\n\n - Insufficient timing side-channel resistance in divSpoiler.\n\n - select dropdown menu can be used for URL bar spoofing on e10s.\n\n - Possible integer overflow to fix inside XML_Parse in Expat.\n\n - Probe browser history via HSTS/301 redirect + CSP.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this\n vulnerability will allow remote attackers to execute arbitrary code, to delete\n arbitrary files by leveraging certain local file execution, to obtain sensitive\n information, and to cause a denial of service.\");\n\n script_tag(name:\"affected\", value:\"Mozilla Firefox version before 50 on Windows.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Mozilla Firefox version 50\n or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"registry\");\n\n script_xref(name:\"URL\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_portable_win.nasl\");\n script_mandatory_keys(\"Firefox/Win/Ver\");\n script_xref(name:\"URL\", value:\"http://www.mozilla.com/en-US/firefox/all.html\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!ffVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:ffVer, test_version:\"50.0\"))\n{\n report = report_fixed_ver(installed_version:ffVer, fixed_version:\"50.0\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:36:53", "references": ["http://www.mozilla.com/en-US/firefox/all.html", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/"], "pluginID": "1361412562310809804", "description": "This host is installed with\n Mozilla Firefox and is prone to multiple vulnerabilities.", "edition": 9, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-16T00:00:00", "title": "Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-MAC OS X", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9072", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-10-18T00:00:00", "id": "OPENVAS:1361412562310809804", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310809804", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_mozilla_firefox_mfsa_2016-89_2016-90_macosx.nasl 11969 2018-10-18 14:53:42Z asteins $\n#\n# Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-MAC OS X\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:mozilla:firefox\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.809804\");\n script_version(\"$Revision: 11969 $\");\n script_cve_id(\"CVE-2016-5296\", \"CVE-2016-5292\", \"CVE-2016-5297\", \"CVE-2016-9064\",\n \"CVE-2016-9066\", \"CVE-2016-9067\", \"CVE-2016-5290\", \"CVE-2016-9068\",\n \"CVE-2016-9072\", \"CVE-2016-9075\", \"CVE-2016-9077\", \"CVE-2016-5291\",\n \"CVE-2016-9070\", \"CVE-2016-9073\", \"CVE-2016-9074\", \"CVE-2016-9076\",\n \"CVE-2016-9063\", \"CVE-2016-9071\", \"CVE-2016-5289\");\n script_bugtraq_id(94336, 94337, 94342, 94339);\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-18 16:53:42 +0200 (Thu, 18 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-16 12:25:23 +0530 (Wed, 16 Nov 2016)\");\n script_name(\"Mozilla Firefox Security Updates (mfsa_2016-89_2016-90)-MAC OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with\n Mozilla Firefox and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exist due to,\n\n - Heap-buffer-overflow WRITE in rasterize_edges_1.\n\n - URL parsing causes crash.\n\n - Incorrect argument length checking in JavaScript.\n\n - Add-ons update must verify IDs match between current and new versions.\n\n - Integer overflow leading to a buffer overflow in nsScriptLoadHandler.\n\n - heap-use-after-free in nsINode::ReplaceOrInsertBefore.\n\n - heap-use-after-free in nsRefreshDriver.\n\n - 64-bit NPAPI sandbox is not enabled on fresh profile.\n\n - WebExtensions can access the mozAddonManager API and use it to gain elevated\n privileges.\n\n - Canvas filters allow feDisplacementMaps to be applied to cross-origin images,\n allowing timing attacks on them.\n\n - Same-origin policy violation using local HTML file and saved shortcut file.\n\n - Sidebar bookmark can have reference to chrome window.\n\n - Insufficient timing side-channel resistance in divSpoiler.\n\n - select dropdown menu can be used for URL bar spoofing on e10s.\n\n - Possible integer overflow to fix inside XML_Parse in Expat.\n\n - Probe browser history via HSTS/301 redirect + CSP.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this\n vulnerability will allow remote attackers to execute arbitrary code, to delete\n arbitrary files by leveraging certain local file execution, to obtain sensitive\n information, and to cause a denial of service.\");\n\n script_tag(name:\"affected\", value:\"Mozilla Firefox version before\n 50 on MAC OS X.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Mozilla Firefox version 50\n or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n\n script_xref(name:\"URL\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_mozilla_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Mozilla/Firefox/MacOSX/Version\");\n script_xref(name:\"URL\", value:\"http://www.mozilla.com/en-US/firefox/all.html\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!ffVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:ffVer, test_version:\"50.0\"))\n{\n report = report_fixed_ver(installed_version:ffVer, fixed_version:\"50.0\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-04T13:33:56", "references": ["http://www.ubuntu.com/usn/usn-3124-1/", "3124-1"], "pluginID": "1361412562310842953", "description": "The remote host is missing an update for the ", "edition": 9, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-19T00:00:00", "title": "Ubuntu Update for firefox USN-3124-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-12-04T00:00:00", "id": "OPENVAS:1361412562310842953", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310842953", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Ubuntu Update for firefox USN-3124-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.842953\");\n script_version(\"$Revision: 12637 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-12-04 09:36:44 +0100 (Tue, 04 Dec 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-19 05:36:56 +0100 (Sat, 19 Nov 2016)\");\n script_cve_id(\"CVE-2016-5289\", \"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5292\",\n\t\t\"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9063\", \"CVE-2016-9064\",\n\t\t\"CVE-2016-9066\", \"CVE-2016-9067\", \"CVE-2016-9069\", \"CVE-2016-9068\",\n\t\t\"CVE-2016-9070\", \"CVE-2016-9071\", \"CVE-2016-9073\", \"CVE-2016-9075\",\n\t\t\"CVE-2016-9076\", \"CVE-2016-9077\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for firefox USN-3124-1\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'firefox'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"Christian Holler, Andrew McCreight, Dan\n Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey, Jesse Ruderman, Markus\n Stange, Olli Pettay, Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell\n Jesup discovered multiple memory safety issues in Firefox. If a user were\n tricked in to opening a specially crafted website, an attacker could potentially\n exploit these to cause a denial of service via application crash, or execute\n arbitrary code. (CVE-2016-5289, CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in some\ncircumstances. An attacker could potentially exploit this to obtain\nsensitive information. (CVE-2016-5291)\n\nA crash was discovered when parsing URLs in some circumstances. If a user\nwere tricked in to opening a specially crafted website, an attacker could\npotentially exploit this to execute arbitrary code. (CVE-2016-5292)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG\ncontent. If a user were tricked in to opening a specially crafted website,\nan attacker could potentially exploit this to cause a denial of service\nvia application crash, or execute arbitrary code. (CVE-2016-5296)\n\nAn error was discovered in argument length checking in Javascript. If a\nuser were tricked in to opening a specially crafted website, an attacker\ncould potentially exploit this to cause a denial of service via\napplication crash, or execute arbitrary code. (CVE-2016-5297)\n\nAn integer overflow was discovered in the Expat library. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit this to cause a denial of service via application\ncrash. (CVE-2016-9063)\n\nIt was discovered that addon updates failed to verify that the addon ID\ninside the signed package matched the ID of the addon being updated.\nAn attacker that could perform a man-in-the-middle (MITM) attack could\npotentially exploit this to provide malicious addon updates.\n(CVE-2016-9064)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit this to cause a denial of service via application\ncrash, or execute arbitrary code. (CVE-2016-9066)\n\n2 use-after-free bugs were discovered during DOM operations in some\ncircumstances. If a user were tricked in to opening a specially crafted\nwebsite, an attacker could potentially exploit these to cause a denial of\nservice via application crash, or execute arbitrary code. (CVE-2016-9067,\nCVE-2016-9069)\n\nA heap use-after-free was discovered during web animations in some\ncircumstance ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"affected\", value:\"firefox on Ubuntu 16.04 LTS,\n Ubuntu 16.10,\n Ubuntu 14.04 LTS,\n Ubuntu 12.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n\n script_xref(name:\"USN\", value:\"3124-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-3124-1/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.04 LTS|12\\.04 LTS|16\\.04 LTS|16\\.10)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"firefox\", ver:\"50.0+build2-0ubuntu0.14.04.2\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"firefox\", ver:\"50.0+build2-0ubuntu0.12.04.2\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"firefox\", ver:\"50.0+build2-0ubuntu0.16.04.2\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"firefox\", ver:\"50.0+build2-0ubuntu0.16.10.2\", rls:\"UBUNTU16.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:48:50", "references": ["http://lists.centos.org/pipermail/centos-announce/2016-November/022157.html", "2016:2780"], "pluginID": "1361412562310882595", "description": "Check for the Version of firefox", "edition": 7, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-20T00:00:00", "title": "CentOS Update for firefox CESA-2016:2780 centos5 ", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-08-06T00:00:00", "id": "OPENVAS:1361412562310882595", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310882595", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for firefox CESA-2016:2780 centos5 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.882595\");\n script_version(\"$Revision: 10778 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-06 04:57:15 +0200 (Mon, 06 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-20 05:37:16 +0100 (Sun, 20 Nov 2016)\");\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \n \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"CentOS Update for firefox CESA-2016:2780 centos5 \");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A\nweb page containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nFirefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291,\nCVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox.\nA Man-in-the-Middle attacker could use this flaw to install a malicious\nsigned add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Abhishek Arya, Andre Bargull, Samuel Grob, Yuyang\nZhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary\nKwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original\nreporters.\n\");\n script_tag(name: \"affected\", value: \"firefox on CentOS 5\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"CESA\", value: \"2016:2780\");\n script_xref(name: \"URL\" , value: \"http://lists.centos.org/pipermail/centos-announce/2016-November/022157.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of firefox\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"firefox\", rpm:\"firefox~45.5.0~1.el5.centos\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:47:59", "references": ["http://lists.centos.org/pipermail/centos-announce/2016-November/022156.html", "2016:2780"], "pluginID": "1361412562310882592", "description": "Check for the Version of firefox", "edition": 7, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-20T00:00:00", "title": "CentOS Update for firefox CESA-2016:2780 centos6 ", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-08-06T00:00:00", "id": "OPENVAS:1361412562310882592", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310882592", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for firefox CESA-2016:2780 centos6 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.882592\");\n script_version(\"$Revision: 10778 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-06 04:57:15 +0200 (Mon, 06 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-20 05:36:58 +0100 (Sun, 20 Nov 2016)\");\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \n \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"CentOS Update for firefox CESA-2016:2780 centos6 \");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A\nweb page containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nFirefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291,\nCVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox.\nA Man-in-the-Middle attacker could use this flaw to install a malicious\nsigned add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Abhishek Arya, Andre Bargull, Samuel Grob, Yuyang\nZhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary\nKwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original\nreporters.\n\");\n script_tag(name: \"affected\", value: \"firefox on CentOS 6\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"CESA\", value: \"2016:2780\");\n script_xref(name: \"URL\" , value: \"http://lists.centos.org/pipermail/centos-announce/2016-November/022156.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of firefox\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"firefox\", rpm:\"firefox~45.5.0~1.el6.centos\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-23T15:09:36", "references": ["2016:2780-01", "https://www.redhat.com/archives/rhsa-announce/2016-November/msg00074.html"], "pluginID": "1361412562310871719", "description": "The remote host is missing an update for the ", "edition": 9, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-17T00:00:00", "title": "RedHat Update for firefox RHSA-2016:2780-01", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-11-23T00:00:00", "id": "OPENVAS:1361412562310871719", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310871719", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for firefox RHSA-2016:2780-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.871719\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-17 05:00:27 +0100 (Thu, 17 Nov 2016)\");\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"RedHat Update for firefox RHSA-2016:2780-01\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'firefox'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es):\n\n * Multiple flaws were found in the processing of malformed web content. A\nweb page containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nFirefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291,\nCVE-2016-5290)\n\n * A flaw was found in the way Add-on update process was handled by Firefox.\nA Man-in-the-Middle attacker could use this flaw to install a malicious\nsigned add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang\nZhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary\nKwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original\nreporters.\");\n script_tag(name:\"affected\", value:\"firefox on Red Hat Enterprise Linux (v. 5 server),\n Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Server (v. 7),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n\n script_xref(name:\"RHSA\", value:\"2016:2780-01\");\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2016-November/msg00074.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_(7|6|5)\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_7\")\n{\n\n if ((res = isrpmvuln(pkg:\"firefox\", rpm:\"firefox~45.5.0~1.el7_3\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"firefox-debuginfo\", rpm:\"firefox-debuginfo~45.5.0~1.el7_3\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"firefox\", rpm:\"firefox~45.5.0~1.el6_8\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"firefox-debuginfo\", rpm:\"firefox-debuginfo~45.5.0~1.el6_8\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"firefox\", rpm:\"firefox~45.5.0~1.el5_11\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"firefox-debuginfo\", rpm:\"firefox-debuginfo~45.5.0~1.el5_11\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-21T13:04:43", "references": ["https://www.mozilla.org/en-US/thunderbird", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-93"], "pluginID": "1361412562310809822", "description": "This host is installed with Mozilla\n Thunderbird and is prone to multiple vulnerabilities.", "edition": 6, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-12-01T00:00:00", "title": "Mozilla Thunderbird Security Updates( mfsa_2016-93_2016-93 )-MAC OS X", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066"], "modified": "2018-11-20T00:00:00", "id": "OPENVAS:1361412562310809822", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310809822", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_mozilla_thunderbird_mfsa_2016-93_2016-93_macosx.nasl 12431 2018-11-20 09:21:00Z asteins $\n#\n# Mozilla Thunderbird Security Updates( mfsa_2016-93_2016-93 )-MAC OS X\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:mozilla:thunderbird\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.809822\");\n script_version(\"$Revision: 12431 $\");\n script_cve_id(\"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9066\", \"CVE-2016-5291\",\n \t\t\"CVE-2016-9074\", \"CVE-2016-5290\");\n script_bugtraq_id(94339, 94336, 94341, 94335);\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-20 10:21:00 +0100 (Tue, 20 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-12-01 11:46:45 +0530 (Thu, 01 Dec 2016)\");\n script_name(\"Mozilla Thunderbird Security Updates( mfsa_2016-93_2016-93 )-MAC OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Mozilla\n Thunderbird and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exist due to,\n\n - Heap-buffer-overflow WRITE in rasterize_edges_1.\n\n - Arbitrary target directory for result files of update process.\n\n - Incorrect argument length checking in JavaScript.\n\n - Integer overflow leading to a buffer overflow in nsScriptLoadHandler.\n\n - Same-origin policy violation using local HTML file and saved shortcut file.\n\n - Insufficient timing side-channel resistance in divSpoiler.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this vulnerability\n will allow remote attackers to execute arbitrary code, to delete arbitrary files\n by leveraging certain local file execution, to obtain sensitive information, and\n to cause a denial of service.\");\n\n script_tag(name:\"affected\", value:\"Mozilla Thunderbird version before\n 45.5 on MAC OS X.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Mozilla Thunderbird version 45.5\n or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-93\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_mozilla_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"ThunderBird/MacOSX/Version\");\n script_xref(name:\"URL\", value:\"https://www.mozilla.org/en-US/thunderbird\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!tbVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:tbVer, test_version:\"45.5\"))\n{\n report = report_fixed_ver(installed_version:tbVer, fixed_version:\"45.5\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-19T13:00:14", "references": ["3141-1", "http://www.ubuntu.com/usn/usn-3141-1/"], "pluginID": "1361412562310842967", "description": "The remote host is missing an update for the ", "edition": 8, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-12-01T00:00:00", "title": "Ubuntu Update for thunderbird USN-3141-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-11-16T00:00:00", "id": "OPENVAS:1361412562310842967", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310842967", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Ubuntu Update for thunderbird USN-3141-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.842967\");\n script_version(\"$Revision: 12381 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:16:30 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-12-01 05:39:07 +0100 (Thu, 01 Dec 2016)\");\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9066\", \"CVE-2016-9079\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for thunderbird USN-3141-1\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'thunderbird'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"Christian Holler, Jon Coppeard, Olli Pettay,\n Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell Jesup discovered multiple\n memory safety issues in Thunderbird. If a user were tricked in to opening a\n specially crafted message, an attacker could potentially exploit these to cause a\n denial of service via application crash, or execute arbitrary code. (CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in some\ncircumstances. An attacker could potentially exploit this to obtain\nsensitive information. (CVE-2016-5291)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG\ncontent. If a user were tricked in to opening a specially crafted message,\nan attacker could potentially exploit this to cause a denial of service\nvia application crash, or execute arbitrary code. (CVE-2016-5296)\n\nAn error was discovered in argument length checking in Javascript. If a\nuser were tricked in to opening a specially crafted website in a browsing\ncontext, an attacker could potentially exploit this to cause a denial of\nservice via application crash, or execute arbitrary code. (CVE-2016-5297)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user were\ntricked in to opening a specially crafted website in a browsing context,\nan attacker could potentially exploit this to cause a denial of service\nvia application crash, or execute arbitrary code. (CVE-2016-9066)\n\nA use-after-free was discovered in SVG animations. If a user were tricked\nin to opening a specially crafted website in a browsing context, an\nattacker could exploit this to cause a denial of service via application\ncrash, or execute arbitrary code. (CVE-2016-9079)\");\n script_tag(name:\"affected\", value:\"thunderbird on Ubuntu 16.04 LTS,\n Ubuntu 14.04 LTS,\n Ubuntu 12.04 LTS,\n Ubuntu 16.10\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n\n script_xref(name:\"USN\", value:\"3141-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-3141-1/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.04 LTS|12\\.04 LTS|16\\.04 LTS|16\\.10)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"thunderbird\", ver:\"1:45.5.1+build1-0ubuntu0.14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"thunderbird\", ver:\"1:45.5.1+build1-0ubuntu0.12.04.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"thunderbird\", ver:\"1:45.5.1+build1-0ubuntu0.16.04.1\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"thunderbird\", ver:\"1:45.5.1+build1-0ubuntu0.16.10.1\", rls:\"UBUNTU16.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:37:29", "references": ["http://www.mozilla.com/en-US/firefox/all.html", "https://www.mozilla.org/en-US/security/advisories/mfsa2016-90/"], "pluginID": "1361412562310809806", "description": "This host is installed with\n Mozilla Firefox ESR and is prone to multiple vulnerabilities.", "edition": 9, "reporter": "Copyright (C) 2016 Greenbone Networks GmbH", "published": "2016-11-16T00:00:00", "title": "Mozilla Firefox ESR Security Updates (mfsa_2016-89_2016-90)-Windows", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-9066", "CVE-2016-5293"], "modified": "2018-10-18T00:00:00", "id": "OPENVAS:1361412562310809806", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310809806", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_mozilla_firefox_esr_mfsa_2016-89_2016-90_win.nasl 11969 2018-10-18 14:53:42Z asteins $\n#\n# Mozilla Firefox ESR Security Updates (mfsa_2016-89_2016-90)-Windows\n#\n# Authors:\n# kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:mozilla:firefox_esr\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.809806\");\n script_version(\"$Revision: 11969 $\");\n script_cve_id(\"CVE-2016-5296\", \"CVE-2016-5293\", \"CVE-2016-5294\", \"CVE-2016-5297\",\n\t\t\"CVE-2016-9064\", \"CVE-2016-9066\", \"CVE-2016-5291\", \"CVE-2016-9074\",\n\t\t\"CVE-2016-5290\");\n script_bugtraq_id(94336, 94337, 94342, 94339);\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-18 16:53:42 +0200 (Thu, 18 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2016-11-16 13:10:33 +0530 (Wed, 16 Nov 2016)\");\n script_name(\"Mozilla Firefox ESR Security Updates (mfsa_2016-89_2016-90)-Windows\");\n\n script_tag(name:\"summary\", value:\"This host is installed with\n Mozilla Firefox ESR and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exist due to,\n\n - Heap-buffer-overflow WRITE in rasterize_edges_1.\n\n - Write to arbitrary file with Mozilla Updater and Maintenance Service using\n updater.log hardlink.\n\n - Arbitrary target directory for result files of update process.\n\n - Incorrect argument length checking in JavaScript.\n\n - Add-ons update must verify IDs match between current and new versions.\n\n - Integer overflow leading to a buffer overflow in nsScriptLoadHandler.\n\n - Same-origin policy violation using local HTML file and saved shortcut file.\n\n - Insufficient timing side-channel resistance in divSpoiler.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this\n vulnerability will allow remote attackers to execute arbitrary code, to delete\n arbitrary files by leveraging certain local file execution, to obtain sensitive\n information, and to cause a denial of service.\");\n\n script_tag(name:\"affected\", value:\"Mozilla Firefox ESR version before\n 45.5 on Windows.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Mozilla Firefox ESR version 45.5\n or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"registry\");\n\n script_xref(name:\"URL\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-90/\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_portable_win.nasl\");\n script_mandatory_keys(\"Firefox-ESR/Win/Ver\");\n script_xref(name:\"URL\", value:\"http://www.mozilla.com/en-US/firefox/all.html\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!ffVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:ffVer, test_version:\"45.5\"))\n{\n report = report_fixed_ver(installed_version:ffVer, fixed_version:\"45.5\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-02T00:07:48", "references": ["https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/"], "pluginID": "94958", "description": "The version of Mozilla Firefox installed on the remote macOS or Mac OS X host is prior to 50.0. It is, therefore, affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An unauthenticated, remote attacker can exploit these vulnerabilities by convincing a user to visit a specially crafted website, resulting in the execution of arbitrary code in the context of the current user.", "edition": 9, "reporter": "Tenable", "published": "2016-11-18T00:00:00", "title": "Mozilla Firefox < 50.0 Multiple Vulnerabilities (macOS)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "MacOS X Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-07-14T00:00:00", "cpe": ["cpe:/a:mozilla:firefox"], "id": "MACOSX_FIREFOX_50_0.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=94958", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(94958);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/14 1:59:36\");\n\n script_cve_id(\n \"CVE-2016-5289\",\n \"CVE-2016-5290\",\n \"CVE-2016-5291\",\n \"CVE-2016-5292\",\n \"CVE-2016-5296\",\n \"CVE-2016-5297\",\n \"CVE-2016-9063\",\n \"CVE-2016-9064\",\n \"CVE-2016-9066\",\n \"CVE-2016-9067\",\n \"CVE-2016-9068\",\n \"CVE-2016-9069\",\n \"CVE-2016-9070\",\n \"CVE-2016-9071\",\n \"CVE-2016-9073\",\n \"CVE-2016-9074\",\n \"CVE-2016-9075\",\n \"CVE-2016-9076\",\n \"CVE-2016-9077\"\n );\n script_bugtraq_id(\n 94335,\n 94336,\n 94337,\n 94339,\n 94341\n );\n script_xref(name:\"MFSA\", value:\"2016-89\");\n\n script_name(english:\"Mozilla Firefox < 50.0 Multiple Vulnerabilities (macOS)\");\n script_summary(english:\"Checks the version of Firefox.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote macOS or Mac OS X host contains a web browser that is\naffected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Mozilla Firefox installed on the remote macOS or Mac\nOS X host is prior to 50.0. It is, therefore, affected by multiple\nvulnerabilities, the majority of which are remote code execution\nvulnerabilities. An unauthenticated, remote attacker can exploit these\nvulnerabilities by convincing a user to visit a specially crafted\nwebsite, resulting in the execution of arbitrary code in the context\nof the current user.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Mozilla Firefox version 50.0 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2016/11/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/18\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:mozilla:firefox\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"macosx_firefox_installed.nasl\");\n script_require_keys(\"MacOSX/Firefox/Installed\");\n\n exit(0);\n}\n\ninclude(\"mozilla_version.inc\");\n\nkb_base = \"MacOSX/Firefox\";\nget_kb_item_or_exit(kb_base+\"/Installed\");\n\nversion = get_kb_item_or_exit(kb_base+\"/Version\", exit_code:1);\npath = get_kb_item_or_exit(kb_base+\"/Path\", exit_code:1);\n\nif (get_kb_item(kb_base + '/is_esr')) exit(0, 'The Mozilla Firefox installation is in the ESR branch.');\n\nmozilla_check_version(product:'firefox', version:version, path:path, esr:FALSE, fix:'50', severity:SECURITY_HOLE);\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-05T05:41:15", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=1010401", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010402", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010409", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010410", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010399", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010420", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010395", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010421", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010422", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010425", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010408", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010406", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010404", "https://bugzilla.opensuse.org/show_bug.cgi?id=1009026", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010424", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010423", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010427", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010405", "https://bugzilla.opensuse.org/show_bug.cgi?id=1010426"], "pluginID": "95022", "description": "This update to Mozilla Firefox 50.0 fixes a number of security issues.\n\nThe following vulnerabilities were fixed in Mozilla Firefox (MFSA 2016-89) :\n\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1 (bmo#1292443)\n\n - CVE-2016-5292: URL parsing causes crash (bmo#1288482)\n\n - CVE-2016-5297: Incorrect argument length checking in JavaScript (bmo#1303678)\n\n - CVE-2016-9064: Addons update must verify IDs match between current and new versions (bmo#1303418)\n\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (bmo#1299686)\n\n - CVE-2016-9067: heap-use-after-free in nsINode::ReplaceOrInsertBefore (bmo#1301777, bmo#1308922 (CVE-2016-9069))\n\n - CVE-2016-9068: heap-use-after-free in nsRefreshDriver (bmo#1302973)\n\n - CVE-2016-9075: WebExtensions can access the mozAddonManager API and use it to gain elevated privileges (bmo#1295324)\n\n - CVE-2016-9077: Canvas filters allow feDisplacementMaps to be applied to cross-origin images, allowing timing attacks on them (bmo#1298552)\n\n - CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file (bmo#1292159)\n\n - CVE-2016-9070: Sidebar bookmark can have reference to chrome window (bmo#1281071)\n\n - CVE-2016-9073: windows.create schema doesn't specify 'format': 'relativeUrl' (bmo#1289273)\n\n - CVE-2016-9076: select dropdown menu can be used for URL bar spoofing on e10s (bmo#1276976)\n\n - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse in expat (bmo#1274777)\n\n - CVE-2016-9071: Probe browser history via HSTS/301 redirect + CSP (bmo#1285003)\n\n - CVE-2016-5289: Memory safety bugs fixed in Firefox 50\n\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR 45.5\n\nThe following vulnerabilities were fixed in Mozilla NSS 3.26.1 :\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler (bmo#1293334) Mozilla Firefox now requires mozilla-nss 3.26.2.\n\nNew features in Mozilla Firefox :\n\n - Updates to keyboard shortcuts Set a preference to have Ctrl+Tab cycle through tabs in recently used order View a page in Reader Mode by using Ctrl+Alt+R\n\n - Added option to Find in page that allows users to limit search to whole words only\n\n - Added download protection for a large number of executable file types on Windows, Mac and Linux\n\n - Fixed rendering of dashed and dotted borders with rounded corners (border-radius)\n\n - Added a built-in Emoji set for operating systems without native Emoji fonts\n\n - Blocked versions of libavcodec older than 54.35.1\n\n - additional locale\n\nmozilla-nss was updated to 3.26.2, incorporating the following changes :\n\n - the selfserv test utility has been enhanced to support ALPN (HTTP/1.1) and 0-RTT\n\n - The following CA certificate was added: CN = ISRG Root X1\n\n - NPN is disabled and ALPN is enabled by default\n\n - MD5 signature algorithms sent by the server in CertificateRequest messages are now properly ignored", "edition": 8, "reporter": "Tenable", "published": "2016-11-21T00:00:00", "title": "openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2016-1334)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-09-04T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:MozillaFirefox-translations-common", "p-cpe:/a:novell:opensuse:MozillaFirefox-buildsymbols", "p-cpe:/a:novell:opensuse:libfreebl3-debuginfo", "p-cpe:/a:novell:opensuse:mozilla-nss-tools-debuginfo", "p-cpe:/a:novell:opensuse:libfreebl3", "p-cpe:/a:novell:opensuse:libsoftokn3-32bit", "p-cpe:/a:novell:opensuse:mozilla-nss-certs", "p-cpe:/a:novell:opensuse:mozilla-nss-32bit", "p-cpe:/a:novell:opensuse:MozillaFirefox-debuginfo", "p-cpe:/a:novell:opensuse:libsoftokn3-debuginfo-32bit", "p-cpe:/a:novell:opensuse:MozillaFirefox-devel", "p-cpe:/a:novell:opensuse:mozilla-nss-debugsource", "cpe:/o:novell:opensuse:42.1", "p-cpe:/a:novell:opensuse:mozilla-nss-tools", "p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-debuginfo-32bit", "p-cpe:/a:novell:opensuse:libsoftokn3", "p-cpe:/a:novell:opensuse:mozilla-nss", "p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-debuginfo", "p-cpe:/a:novell:opensuse:mozilla-nss-certs-debuginfo", "p-cpe:/a:novell:opensuse:mozilla-nss-certs-32bit", "p-cpe:/a:novell:opensuse:mozilla-nss-debuginfo", "p-cpe:/a:novell:opensuse:MozillaFirefox-branding-upstream", "p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-32bit", "p-cpe:/a:novell:opensuse:mozilla-nss-certs-debuginfo-32bit", "p-cpe:/a:novell:opensuse:libsoftokn3-debuginfo", "cpe:/o:novell:opensuse:13.2", "cpe:/o:novell:opensuse:42.2", "p-cpe:/a:novell:opensuse:mozilla-nss-debuginfo-32bit", "p-cpe:/a:novell:opensuse:mozilla-nss-sysinit", "p-cpe:/a:novell:opensuse:MozillaFirefox-translations-other", "p-cpe:/a:novell:opensuse:MozillaFirefox-debugsource", "p-cpe:/a:novell:opensuse:libfreebl3-debuginfo-32bit", "p-cpe:/a:novell:opensuse:MozillaFirefox", "p-cpe:/a:novell:opensuse:libfreebl3-32bit", "p-cpe:/a:novell:opensuse:mozilla-nss-devel"], "id": "OPENSUSE-2016-1334.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=95022", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2016-1334.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(95022);\n script_version(\"3.7\");\n script_cvs_date(\"Date: 2018/09/04 13:20:08\");\n\n script_cve_id(\"CVE-2016-5289\", \"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5292\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9063\", \"CVE-2016-9064\", \"CVE-2016-9066\", \"CVE-2016-9067\", \"CVE-2016-9068\", \"CVE-2016-9069\", \"CVE-2016-9070\", \"CVE-2016-9071\", \"CVE-2016-9073\", \"CVE-2016-9074\", \"CVE-2016-9075\", \"CVE-2016-9076\", \"CVE-2016-9077\");\n\n script_name(english:\"openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2016-1334)\");\n script_summary(english:\"Check for the openSUSE-2016-1334 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update to Mozilla Firefox 50.0 fixes a number of security issues.\n\nThe following vulnerabilities were fixed in Mozilla Firefox (MFSA\n2016-89) :\n\n - CVE-2016-5296: Heap-buffer-overflow WRITE in\n rasterize_edges_1 (bmo#1292443)\n\n - CVE-2016-5292: URL parsing causes crash (bmo#1288482)\n\n - CVE-2016-5297: Incorrect argument length checking in\n JavaScript (bmo#1303678)\n\n - CVE-2016-9064: Addons update must verify IDs match\n between current and new versions (bmo#1303418)\n\n - CVE-2016-9066: Integer overflow leading to a buffer\n overflow in nsScriptLoadHandler (bmo#1299686)\n\n - CVE-2016-9067: heap-use-after-free in\n nsINode::ReplaceOrInsertBefore (bmo#1301777, bmo#1308922\n (CVE-2016-9069))\n\n - CVE-2016-9068: heap-use-after-free in nsRefreshDriver\n (bmo#1302973)\n\n - CVE-2016-9075: WebExtensions can access the\n mozAddonManager API and use it to gain elevated\n privileges (bmo#1295324)\n\n - CVE-2016-9077: Canvas filters allow feDisplacementMaps\n to be applied to cross-origin images, allowing timing\n attacks on them (bmo#1298552)\n\n - CVE-2016-5291: Same-origin policy violation using local\n HTML file and saved shortcut file (bmo#1292159)\n\n - CVE-2016-9070: Sidebar bookmark can have reference to\n chrome window (bmo#1281071)\n\n - CVE-2016-9073: windows.create schema doesn't specify\n 'format': 'relativeUrl' (bmo#1289273)\n\n - CVE-2016-9076: select dropdown menu can be used for URL\n bar spoofing on e10s (bmo#1276976)\n\n - CVE-2016-9063: Possible integer overflow to fix inside\n XML_Parse in expat (bmo#1274777)\n\n - CVE-2016-9071: Probe browser history via HSTS/301\n redirect + CSP (bmo#1285003)\n\n - CVE-2016-5289: Memory safety bugs fixed in Firefox 50\n\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50\n and Firefox ESR 45.5\n\nThe following vulnerabilities were fixed in Mozilla NSS 3.26.1 :\n\n - CVE-2016-9074: Insufficient timing side-channel\n resistance in divSpoiler (bmo#1293334) Mozilla Firefox\n now requires mozilla-nss 3.26.2.\n\nNew features in Mozilla Firefox :\n\n - Updates to keyboard shortcuts Set a preference to have\n Ctrl+Tab cycle through tabs in recently used order View\n a page in Reader Mode by using Ctrl+Alt+R\n\n - Added option to Find in page that allows users to limit\n search to whole words only\n\n - Added download protection for a large number of\n executable file types on Windows, Mac and Linux\n\n - Fixed rendering of dashed and dotted borders with\n rounded corners (border-radius)\n\n - Added a built-in Emoji set for operating systems without\n native Emoji fonts\n\n - Blocked versions of libavcodec older than 54.35.1\n\n - additional locale\n\nmozilla-nss was updated to 3.26.2, incorporating the following \nchanges :\n\n - the selfserv test utility has been enhanced to support\n ALPN (HTTP/1.1) and 0-RTT\n\n - The following CA certificate was added: CN = ISRG Root\n X1\n\n - NPN is disabled and ALPN is enabled by default\n\n - MD5 signature algorithms sent by the server in\n CertificateRequest messages are now properly ignored\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1009026\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010395\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010401\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010402\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010404\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010405\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010406\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010409\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010410\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010420\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010421\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010422\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010423\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010425\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1010427\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected MozillaFirefox / mozilla-nss packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-branding-upstream\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-buildsymbols\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-translations-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:MozillaFirefox-translations-other\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libfreebl3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libfreebl3-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libfreebl3-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libfreebl3-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libsoftokn3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libsoftokn3-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libsoftokn3-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libsoftokn3-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-certs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-certs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-certs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-certs-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-sysinit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-sysinit-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:mozilla-nss-tools-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE13\\.2|SUSE42\\.1|SUSE42\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"13.2 / 42.1 / 42.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-branding-upstream-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-buildsymbols-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-debuginfo-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-debugsource-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-devel-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-translations-common-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"MozillaFirefox-translations-other-50.0-88.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libfreebl3-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libfreebl3-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libsoftokn3-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libsoftokn3-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-certs-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-certs-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-debugsource-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-devel-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-sysinit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-sysinit-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-tools-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"mozilla-nss-tools-debuginfo-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libfreebl3-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libfreebl3-debuginfo-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libsoftokn3-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libsoftokn3-debuginfo-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-debuginfo-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-debuginfo-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-debuginfo-32bit-3.26.2-49.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-branding-upstream-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-buildsymbols-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-debuginfo-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-debugsource-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-devel-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-translations-common-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"MozillaFirefox-translations-other-50.0-39.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libfreebl3-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libfreebl3-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libsoftokn3-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libsoftokn3-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-certs-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-certs-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-debugsource-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-devel-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-sysinit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-sysinit-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-tools-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"mozilla-nss-tools-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libfreebl3-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libfreebl3-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libsoftokn3-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libsoftokn3-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-branding-upstream-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-buildsymbols-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-debuginfo-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-debugsource-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-devel-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-translations-common-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"MozillaFirefox-translations-other-50.0-39.2\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libfreebl3-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libfreebl3-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libsoftokn3-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libsoftokn3-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-certs-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-certs-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-debugsource-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-devel-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-sysinit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-sysinit-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-tools-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"mozilla-nss-tools-debuginfo-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libfreebl3-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libfreebl3-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libsoftokn3-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libsoftokn3-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-certs-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-debuginfo-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-32bit-3.26.2-32.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"mozilla-nss-sysinit-debuginfo-32bit-3.26.2-32.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"MozillaFirefox / MozillaFirefox-branding-upstream / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-02T15:28:50", "references": ["https://usn.ubuntu.com/3124-1/"], "pluginID": "95025", "description": "Christian Holler, Andrew McCreight, Dan Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey, Jesse Ruderman, Markus Stange, Olli Pettay, Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell Jesup discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5289, CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in some circumstances. An attacker could potentially exploit this to obtain sensitive information. (CVE-2016-5291)\n\nA crash was discovered when parsing URLs in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to execute arbitrary code.\n(CVE-2016-5292)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG content. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code.\n(CVE-2016-5296)\n\nAn error was discovered in argument length checking in JavaScript. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5297)\n\nAn integer overflow was discovered in the Expat library. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash. (CVE-2016-9063)\n\nIt was discovered that addon updates failed to verify that the addon ID inside the signed package matched the ID of the addon being updated. An attacker that could perform a man-in-the-middle (MITM) attack could potentially exploit this to provide malicious addon updates. (CVE-2016-9064)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9066)\n\n2 use-after-free bugs were discovered during DOM operations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code.\n(CVE-2016-9067, CVE-2016-9069)\n\nA heap use-after-free was discovered during web animations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code.\n(CVE-2016-9068)\n\nIt was discovered that a page loaded in to the sidebar through a bookmark could reference a privileged chrome window. An attacker could potentially exploit this to bypass same origin restrictions.\n(CVE-2016-9070)\n\nAn issue was discovered with Content Security Policy (CSP) in combination with HTTP to HTTPS redirection. An attacker could potentially exploit this to verify whether a site is within the user's browsing history. (CVE-2016-9071)\n\nAn issue was discovered with the windows.create() WebExtensions API.\nIf a user were tricked in to installing a malicious extension, an attacker could potentially exploit this to escape the WebExtensions sandbox. (CVE-2016-9073)\n\nIt was discovered that WebExtensions can use the mozAddonManager API.\nAn attacker could potentially exploit this to install additional extensions without user permission. (CVE-2016-9075)\n\nIt was discovered that <select> element dropdown menus can cover location bar content when e10s is enabled. An attacker could potentially exploit this to conduct UI spoofing attacks.\n(CVE-2016-9076)\n\nIt was discovered that canvas allows the use of the feDisplacementMap filter on cross-origin images. An attacker could potentially exploit this to conduct timing attacks. (CVE-2016-9077).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 8, "reporter": "Tenable", "published": "2016-11-21T00:00:00", "title": "Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 : firefox vulnerabilities (USN-3124-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-12-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:firefox", "cpe:/o:canonical:ubuntu_linux:16.04", "cpe:/o:canonical:ubuntu_linux:16.10", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts", "cpe:/o:canonical:ubuntu_linux:14.04"], "id": "UBUNTU_USN-3124-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=95025", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-3124-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(95025);\n script_version(\"3.9\");\n script_cvs_date(\"Date: 2018/12/01 15:12:40\");\n\n script_cve_id(\"CVE-2016-5289\", \"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5292\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9063\", \"CVE-2016-9064\", \"CVE-2016-9066\", \"CVE-2016-9067\", \"CVE-2016-9068\", \"CVE-2016-9069\", \"CVE-2016-9070\", \"CVE-2016-9071\", \"CVE-2016-9073\", \"CVE-2016-9075\", \"CVE-2016-9076\", \"CVE-2016-9077\");\n script_xref(name:\"USN\", value:\"3124-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 : firefox vulnerabilities (USN-3124-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Christian Holler, Andrew McCreight, Dan Minor, Tyson Smith, Jon\nCoppeard, Jan-Ivar Bruaroey, Jesse Ruderman, Markus Stange, Olli\nPettay, Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell Jesup\ndiscovered multiple memory safety issues in Firefox. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit these to cause a denial of service via application\ncrash, or execute arbitrary code. (CVE-2016-5289, CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in\nsome circumstances. An attacker could potentially exploit this to\nobtain sensitive information. (CVE-2016-5291)\n\nA crash was discovered when parsing URLs in some circumstances. If a\nuser were tricked in to opening a specially crafted website, an\nattacker could potentially exploit this to execute arbitrary code.\n(CVE-2016-5292)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG\ncontent. If a user were tricked in to opening a specially crafted\nwebsite, an attacker could potentially exploit this to cause a denial\nof service via application crash, or execute arbitrary code.\n(CVE-2016-5296)\n\nAn error was discovered in argument length checking in JavaScript. If\na user were tricked in to opening a specially crafted website, an\nattacker could potentially exploit this to cause a denial of service\nvia application crash, or execute arbitrary code. (CVE-2016-5297)\n\nAn integer overflow was discovered in the Expat library. If a user\nwere tricked in to opening a specially crafted website, an attacker\ncould potentially exploit this to cause a denial of service via\napplication crash. (CVE-2016-9063)\n\nIt was discovered that addon updates failed to verify that the addon\nID inside the signed package matched the ID of the addon being\nupdated. An attacker that could perform a man-in-the-middle (MITM)\nattack could potentially exploit this to provide malicious addon\nupdates. (CVE-2016-9064)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user\nwere tricked in to opening a specially crafted website, an attacker\ncould potentially exploit this to cause a denial of service via\napplication crash, or execute arbitrary code. (CVE-2016-9066)\n\n2 use-after-free bugs were discovered during DOM operations in some\ncircumstances. If a user were tricked in to opening a specially\ncrafted website, an attacker could potentially exploit these to cause\na denial of service via application crash, or execute arbitrary code.\n(CVE-2016-9067, CVE-2016-9069)\n\nA heap use-after-free was discovered during web animations in some\ncircumstances. If a user were tricked in to opening a specially\ncrafted website, an attacker could potentially exploit this to cause a\ndenial of service via application crash, or execute arbitrary code.\n(CVE-2016-9068)\n\nIt was discovered that a page loaded in to the sidebar through a\nbookmark could reference a privileged chrome window. An attacker could\npotentially exploit this to bypass same origin restrictions.\n(CVE-2016-9070)\n\nAn issue was discovered with Content Security Policy (CSP) in\ncombination with HTTP to HTTPS redirection. An attacker could\npotentially exploit this to verify whether a site is within the user's\nbrowsing history. (CVE-2016-9071)\n\nAn issue was discovered with the windows.create() WebExtensions API.\nIf a user were tricked in to installing a malicious extension, an\nattacker could potentially exploit this to escape the WebExtensions\nsandbox. (CVE-2016-9073)\n\nIt was discovered that WebExtensions can use the mozAddonManager API.\nAn attacker could potentially exploit this to install additional\nextensions without user permission. (CVE-2016-9075)\n\nIt was discovered that <select> element dropdown menus can cover\nlocation bar content when e10s is enabled. An attacker could\npotentially exploit this to conduct UI spoofing attacks.\n(CVE-2016-9076)\n\nIt was discovered that canvas allows the use of the feDisplacementMap\nfilter on cross-origin images. An attacker could potentially exploit\nthis to conduct timing attacks. (CVE-2016-9077).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/3124-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected firefox package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2016-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04|14\\.04|16\\.04|16\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04 / 14.04 / 16.04 / 16.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"firefox\", pkgver:\"50.0+build2-0ubuntu0.12.04.2\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"firefox\", pkgver:\"50.0+build2-0ubuntu0.14.04.2\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"firefox\", pkgver:\"50.0+build2-0ubuntu0.16.04.2\")) flag++;\nif (ubuntu_check(osver:\"16.10\", pkgname:\"firefox\", pkgver:\"50.0+build2-0ubuntu0.16.10.2\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"firefox\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-11T13:08:47", "references": ["http://www.nessus.org/u?61f97fdf", "http://www.nessus.org/u?6397317a"], "pluginID": "94982", "description": "An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original reporters.", "edition": 12, "reporter": "Tenable", "published": "2016-11-21T00:00:00", "title": "CentOS 5 / 6 : firefox (CESA-2016:2780)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-11-10T00:00:00", "cpe": ["cpe:/o:centos:centos:6", "p-cpe:/a:centos:centos:firefox", "cpe:/o:centos:centos:5"], "id": "CENTOS_RHSA-2016-2780.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=94982", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2016:2780 and \n# CentOS Errata and Security Advisory 2016:2780 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(94982);\n script_version(\"3.8\");\n script_cvs_date(\"Date: 2018/11/10 11:49:32\");\n\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_xref(name:\"RHSA\", value:\"2016:2780\");\n\n script_name(english:\"CentOS 5 / 6 : firefox (CESA-2016:2780)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An update for firefox is now available for Red Hat Enterprise Linux 5,\nRed Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security\nimpact of Critical. A Common Vulnerability Scoring System (CVSS) base\nscore, which gives a detailed severity rating, is available for each\nvulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web\ncontent. A web page containing malicious content could cause Firefox\nto crash or, potentially, execute arbitrary code with the privileges\nof the user running Firefox. (CVE-2016-5296, CVE-2016-5297,\nCVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by\nFirefox. A Man-in-the-Middle attacker could use this flaw to install a\nmalicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these\nissues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel\nGross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon\nCoppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as\nthe original reporters.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2016-November/022156.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6397317a\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2016-November/022157.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?61f97fdf\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected firefox package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"firefox-45.5.0-1.el5.centos\")) flag++;\n\nif (rpm_check(release:\"CentOS-6\", reference:\"firefox-45.5.0-1.el6.centos\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:06:04", "references": ["https://lists.debian.org/debian-lts-announce/2016/12/msg00000.html", "https://packages.debian.org/source/wheezy/firefox-esr"], "pluginID": "95456", "description": "Multiple security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, buffer overflows and other implementation errors may lead to the execution of arbitrary code or bypass of the same-origin policy.\n\nA man-in-the-middle attack in the addon update mechanism has been fixed.\n\nA use-after-free vulnerability in the SVG Animation was discovered, allowing a remote attacker to cause a denial of service (application crash) or execute arbitrary code, if a user is tricked into opening a specially crafted website.\n\nFor Debian 7 'Wheezy', these problems have been fixed in version 45.5.1esr-1~deb7u1.\n\nWe recommend that you upgrade your firefox-esr packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 8, "reporter": "Tenable", "published": "2016-12-02T00:00:00", "title": "Debian DLA-730-1 : firefox-esr security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-08-31T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ko", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-hy-am", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-et", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bn-in", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-eu", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-sr", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-eu", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-bg", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-sl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ml", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-as", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-is", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fa", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-de", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-id", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ta", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-fi", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-eo", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-or", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fy-nl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-eo", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ga-ie", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-xh", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pt-br", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ca", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-zh-tw", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-id", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-tr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-be", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mai", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hsb", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hr", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-dsb", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-si", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-es", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sv-se", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-bn-bd", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-te", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nl", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-kk", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-cy", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-az", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-km", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ach", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bs", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-is", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-bs", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ar", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-gu-in", "p-cpe:/a:debian:debian_linux:firefox-esr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ach", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-it", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-hr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hu", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nn-no", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fi", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-af", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-mr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-it", "p-cpe:/a:debian:debian_linux:firefox-esr-dev", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-cy", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-th", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-en-gb", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mr", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ko", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-uk", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hi-in", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-sq", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-da", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-xh", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-uz", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-de", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-hu", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-tr", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-pt-br", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hy-am", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-uk", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-all", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gd", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bn-bd", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ar", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-en-za", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-cs", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-an", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-el", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-zh-cn", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-kn", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-kk", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sr", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ast", "p-cpe:/a:debian:debian_linux:iceweasel-dbg", "p-cpe:/a:debian:debian_linux:iceweasel-dev", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-pl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-es", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-mx", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ff", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-nn-no", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-vi", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-az", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nb-no", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-th", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-zh-tw", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-lv", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-fr", "p-cpe:/a:debian:debian_linux:iceweasel", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ml", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ta", "p-cpe:/a:debian:debian_linux:firefox-esr-dbg", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-sv-se", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-dsb", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-km", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ms", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-pa-in", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ja", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-da", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-si", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pt-pt", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-uz", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-gl", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-bn-in", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ff", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-nb-no", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gn", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ru", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-lij", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ru", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-mx", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-pt-pt", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-ar", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sl", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-zh-cn", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ms", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-son", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ja", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-et", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-br", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-be", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-br", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-ar", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gu-in", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ro", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-rm", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-cl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lij", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-en-za", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-nl", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-sk", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sk", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-he", "cpe:/o:debian:debian_linux:7.0", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ro", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-gn", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sq", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lt", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-or", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bg", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-kn", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ca", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-fa", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-cl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-an", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mk", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-lt", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-he", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-rm", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pa-in", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-hi-in", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-fy-nl", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-all", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-en-gb", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-te", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-hsb", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-as", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-mai", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-cs", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-vi", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lv", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ga-ie", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-mk", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-gd", "p-cpe:/a:debian:debian_linux:iceweasel-l10n-ast", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-el", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-son", "p-cpe:/a:debian:debian_linux:firefox-esr-l10n-af"], "id": "DEBIAN_DLA-730.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=95456", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-730-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(95456);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2018/08/31 12:25:01\");\n\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n\n script_name(english:\"Debian DLA-730-1 : firefox-esr security update\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple security issues have been found in the Mozilla Firefox web\nbrowser: Multiple memory safety errors, buffer overflows and other\nimplementation errors may lead to the execution of arbitrary code or\nbypass of the same-origin policy.\n\nA man-in-the-middle attack in the addon update mechanism has been\nfixed.\n\nA use-after-free vulnerability in the SVG Animation was discovered,\nallowing a remote attacker to cause a denial of service (application\ncrash) or execute arbitrary code, if a user is tricked into opening a\nspecially crafted website.\n\nFor Debian 7 'Wheezy', these problems have been fixed in version\n45.5.1esr-1~deb7u1.\n\nWe recommend that you upgrade your firefox-esr packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2016/12/msg00000.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/firefox-esr\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Upgrade the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ach\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-all\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-an\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-as\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-az\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-be\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bn-bd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bn-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-dsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-en-gb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-en-za\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-eo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-cl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-es-mx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ff\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-fy-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ga-ie\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-gu-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hi-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-hy-am\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-id\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-is\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-kk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-kn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lij\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-lv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mai\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-mr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nb-no\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-nn-no\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-or\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pa-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pt-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-pt-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-rm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ro\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-son\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-sv-se\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-ta\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-te\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-uz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-zh-cn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:firefox-esr-l10n-zh-tw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ach\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-all\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-an\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-as\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-az\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-be\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-bn-bd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-bn-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-dsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-en-gb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-en-za\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-eo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-cl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-es-mx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-fa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ff\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-fy-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ga-ie\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-gn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-gu-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-hi-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-hsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-hy-am\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-id\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-is\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-kk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-kn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-lij\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-lv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-mai\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-mr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-nb-no\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-nn-no\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-or\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-pa-in\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-pt-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-pt-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-rm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ro\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-son\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-sq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-sv-se\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-ta\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-te\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-uz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-zh-cn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:iceweasel-l10n-zh-tw\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/12/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/12/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-dbg\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-dev\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ach\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-af\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-all\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-an\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ar\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-as\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ast\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-az\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-be\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-bg\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-bn-bd\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-bn-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-br\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-bs\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ca\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-cs\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-cy\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-da\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-de\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-dsb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-el\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-en-gb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-en-za\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-eo\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-es-ar\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-es-cl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-es-es\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-es-mx\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-et\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-eu\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-fa\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ff\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-fi\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-fr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-fy-nl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ga-ie\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-gd\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-gl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-gn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-gu-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-he\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-hi-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-hr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-hsb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-hu\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-hy-am\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-id\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-is\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-it\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ja\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-kk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-km\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-kn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ko\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-lij\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-lt\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-lv\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-mai\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-mk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ml\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-mr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ms\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-nb-no\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-nl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-nn-no\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-or\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-pa-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-pl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-pt-br\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-pt-pt\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-rm\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ro\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ru\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-si\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-sk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-sl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-son\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-sq\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-sr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-sv-se\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-ta\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-te\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-th\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-tr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-uk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-uz\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-vi\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-xh\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-zh-cn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"firefox-esr-l10n-zh-tw\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-dbg\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-dev\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ach\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-af\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-all\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-an\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ar\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-as\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ast\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-az\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-be\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-bg\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-bn-bd\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-bn-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-br\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-bs\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ca\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-cs\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-cy\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-da\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-de\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-dsb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-el\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-en-gb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-en-za\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-eo\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-es-ar\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-es-cl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-es-es\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-es-mx\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-et\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-eu\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-fa\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ff\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-fi\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-fr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-fy-nl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ga-ie\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-gd\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-gl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-gn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-gu-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-he\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-hi-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-hr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-hsb\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-hu\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-hy-am\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-id\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-is\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-it\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ja\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-kk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-km\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-kn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ko\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-lij\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-lt\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-lv\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-mai\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-mk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ml\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-mr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ms\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-nb-no\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-nl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-nn-no\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-or\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-pa-in\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-pl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-pt-br\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-pt-pt\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-rm\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ro\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ru\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-si\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-sk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-sl\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-son\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-sq\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-sr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-sv-se\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-ta\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-te\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-th\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-tr\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-uk\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-uz\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-vi\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-xh\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-zh-cn\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"iceweasel-l10n-zh-tw\", reference:\"45.5.1esr-1~deb7u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-13T16:46:58", "references": ["https://access.redhat.com/security/cve/cve-2016-5297", "https://access.redhat.com/security/cve/cve-2016-5290", "https://access.redhat.com/errata/RHSA-2016:2780", "https://access.redhat.com/security/cve/cve-2016-5296", "https://access.redhat.com/security/cve/cve-2016-9066", "https://access.redhat.com/security/cve/cve-2016-5291", "http://www.nessus.org/u?8b5eaff4", "https://access.redhat.com/security/cve/cve-2016-9064"], "pluginID": "94920", "description": "An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original reporters.", "edition": 15, "reporter": "Tenable", "published": "2016-11-16T00:00:00", "title": "RHEL 5 / 6 / 7 : firefox (RHSA-2016:2780)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-11-10T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:5", "cpe:/o:redhat:enterprise_linux:7.4", "cpe:/o:redhat:enterprise_linux:7.5", "cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:firefox", "p-cpe:/a:redhat:enterprise_linux:firefox-debuginfo", "cpe:/o:redhat:enterprise_linux:7.3", "cpe:/o:redhat:enterprise_linux:7.6", "cpe:/o:redhat:enterprise_linux:6"], "id": "REDHAT-RHSA-2016-2780.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=94920", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2016:2780. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(94920);\n script_version(\"2.11\");\n script_cvs_date(\"Date: 2018/11/10 11:49:55\");\n\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_xref(name:\"RHSA\", value:\"2016:2780\");\n\n script_name(english:\"RHEL 5 / 6 / 7 : firefox (RHSA-2016:2780)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An update for firefox is now available for Red Hat Enterprise Linux 5,\nRed Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security\nimpact of Critical. A Common Vulnerability Scoring System (CVSS) base\nscore, which gives a detailed severity rating, is available for each\nvulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web\ncontent. A web page containing malicious content could cause Firefox\nto crash or, potentially, execute arbitrary code with the privileges\nof the user running Firefox. (CVE-2016-5296, CVE-2016-5297,\nCVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by\nFirefox. A Man-in-the-Middle attacker could use this flaw to install a\nmalicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these\nissues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel\nGross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon\nCoppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as\nthe original reporters.\"\n );\n # https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/#\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8b5eaff4\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2016:2780\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-9064\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-9066\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-5296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-5297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-5290\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2016-5291\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected firefox and / or firefox-debuginfo packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:firefox-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6|7)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x / 6.x / 7.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2016:2780\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", reference:\"firefox-45.5.0-1.el5_11\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"firefox-debuginfo-45.5.0-1.el5_11\")) flag++;\n\n\n if (rpm_check(release:\"RHEL6\", reference:\"firefox-45.5.0-1.el6_8\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"firefox-debuginfo-45.5.0-1.el6_8\")) flag++;\n\n\n if (rpm_check(release:\"RHEL7\", reference:\"firefox-45.5.0-1.el7_3\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"firefox-debuginfo-45.5.0-1.el7_3\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"firefox / firefox-debuginfo\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-05T05:42:52", "references": ["http://www.nessus.org/u?043a612c"], "pluginID": "95051", "description": "This update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n - Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n - A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)", "edition": 9, "reporter": "Tenable", "published": "2016-11-22T00:00:00", "title": "Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-09-04T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20161116_FIREFOX_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=95051", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(95051);\n script_version(\"2.5\");\n script_cvs_date(\"Date: 2018/09/04 13:20:07\");\n\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n\n script_name(english:\"Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n - Multiple flaws were found in the processing of malformed\n web content. A web page containing malicious content\n could cause Firefox to crash or, potentially, execute\n arbitrary code with the privileges of the user running\n Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066,\n CVE-2016-5291, CVE-2016-5290)\n\n - A flaw was found in the way Add-on update process was\n handled by Firefox. A Man-in-the-Middle attacker could\n use this flaw to install a malicious signed add-on\n update. (CVE-2016-9064)\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1611&L=scientific-linux-errata&F=&S=&P=2914\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?043a612c\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected firefox and / or firefox-debuginfo packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"firefox-45.5.0-1.el5_11\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"firefox-debuginfo-45.5.0-1.el5_11\")) flag++;\n\nif (rpm_check(release:\"SL6\", reference:\"firefox-45.5.0-1.el6_8\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"firefox-debuginfo-45.5.0-1.el6_8\")) flag++;\n\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"firefox-45.5.0-1.el7_3\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"firefox-debuginfo-45.5.0-1.el7_3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-06T09:55:54", "references": ["https://oss.oracle.com/pipermail/el-errata/2016-November/006523.html", "https://oss.oracle.com/pipermail/el-errata/2016-November/006524.html", "https://oss.oracle.com/pipermail/el-errata/2016-November/006522.html"], "pluginID": "94928", "description": "From Red Hat Security Advisory 2016:2780 :\n\nAn update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original reporters.", "edition": 12, "reporter": "Tenable", "published": "2016-11-17T00:00:00", "title": "Oracle Linux 5 / 6 / 7 : firefox (ELSA-2016-2780)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-09-05T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:firefox", "cpe:/o:oracle:linux:5", "cpe:/o:oracle:linux:7"], "id": "ORACLELINUX_ELSA-2016-2780.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=94928", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2016:2780 and \n# Oracle Linux Security Advisory ELSA-2016-2780 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(94928);\n script_version(\"2.9\");\n script_cvs_date(\"Date: 2018/09/05 15:02:26\");\n\n script_cve_id(\"CVE-2016-5290\", \"CVE-2016-5291\", \"CVE-2016-5296\", \"CVE-2016-5297\", \"CVE-2016-9064\", \"CVE-2016-9066\");\n script_xref(name:\"RHSA\", value:\"2016:2780\");\n\n script_name(english:\"Oracle Linux 5 / 6 / 7 : firefox (ELSA-2016-2780)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2016:2780 :\n\nAn update for firefox is now available for Red Hat Enterprise Linux 5,\nRed Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security\nimpact of Critical. A Common Vulnerability Scoring System (CVSS) base\nscore, which gives a detailed severity rating, is available for each\nvulnerability from the CVE link(s) in the References section.\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es) :\n\n* Multiple flaws were found in the processing of malformed web\ncontent. A web page containing malicious content could cause Firefox\nto crash or, potentially, execute arbitrary code with the privileges\nof the user running Firefox. (CVE-2016-5296, CVE-2016-5297,\nCVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by\nFirefox. A Man-in-the-Middle attacker could use this flaw to install a\nmalicious signed add-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these\nissues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel\nGross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon\nCoppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as\nthe original reporters.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2016-November/006522.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2016-November/006523.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2016-November/006524.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected firefox package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:7\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6|7)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5 / 6 / 7\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"firefox-45.5.0-1.0.1.el5_11\")) flag++;\n\nif (rpm_check(release:\"EL6\", reference:\"firefox-45.5.0-1.0.1.el6_8\")) flag++;\n\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"firefox-45.5.0-1.0.1.el7_3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"firefox\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-15T07:03:48", "references": ["http://www.nessus.org/u?1ea6953b"], "pluginID": "99844", "description": "According to the versions of the firefox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :\n\n - Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox.(CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n - A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 16, "reporter": "Tenable", "published": "2017-05-01T00:00:00", "title": "EulerOS 2.0 SP1 : firefox (EulerOS-SA-2016-1085)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Huawei Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2018-11-14T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:firefox", "cpe:/o:huawei:euleros:2.0"], "id": "EULEROS_SA-2016-1085.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99844", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99844);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/11/14 14:36:22\");\n\n script_cve_id(\n \"CVE-2016-5290\",\n \"CVE-2016-5291\",\n \"CVE-2016-5296\",\n \"CVE-2016-5297\",\n \"CVE-2016-9064\",\n \"CVE-2016-9066\"\n );\n\n script_name(english:\"EulerOS 2.0 SP1 : firefox (EulerOS-SA-2016-1085)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the firefox package installed, the\nEulerOS installation on the remote host is affected by the following\nvulnerabilities :\n\n - Multiple flaws were found in the processing of\n malformed web content. A web page containing malicious\n content could cause Firefox to crash or, potentially,\n execute arbitrary code with the privileges of the user\n running Firefox.(CVE-2016-5296, CVE-2016-5297,\n CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n - A flaw was found in the way Add-on update process was\n handled by Firefox. A Man-in-the-Middle attacker could\n use this flaw to install a malicious signed add-on\n update. (CVE-2016-9064)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huawei.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2016-1085\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?1ea6953b\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected firefox packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/16\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:2.0\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/sp\");\n script_exclude_keys(\"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nif (release !~ \"^EulerOS release 2\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"EulerOS 2.0\");\n\nsp = get_kb_item(\"Host/EulerOS/sp\");\nif (isnull(sp) || sp !~ \"^(1)$\") audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP1\");\n\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP1\", \"EulerOS UVP \" + uvp);\n\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\n\nflag = 0;\n\npkgs = [\"firefox-45.5.0-1\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", sp:\"1\", reference:pkg, allowmaj:TRUE)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"firefox\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:39:26", "references": ["https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/"], "pluginID": "94960", "description": "The version of Mozilla Firefox installed on the remote Windows host is prior to 50.0. It is, therefore, affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An unauthenticated, remote attacker can exploit these vulnerabilities by convincing a user to visit a specially crafted website, resulting in the execution of arbitrary code in the context of the current user.", "edition": 9, "reporter": "Tenable", "published": "2016-11-18T00:00:00", "title": "Mozilla Firefox < 50.0 Multiple Vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Windows", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5295", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-9072", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-5293", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-07-16T00:00:00", "cpe": ["cpe:/a:mozilla:firefox"], "id": "MOZILLA_FIREFOX_50_0.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=94960", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(94960);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/16 14:09:14\");\n\n script_cve_id(\n \"CVE-2016-5289\",\n \"CVE-2016-5290\",\n \"CVE-2016-5291\",\n \"CVE-2016-5292\",\n \"CVE-2016-5293\",\n \"CVE-2016-5294\",\n \"CVE-2016-5295\",\n \"CVE-2016-5296\",\n \"CVE-2016-5297\",\n \"CVE-2016-9063\",\n \"CVE-2016-9064\",\n \"CVE-2016-9066\",\n \"CVE-2016-9067\",\n \"CVE-2016-9068\",\n \"CVE-2016-9069\",\n \"CVE-2016-9070\",\n \"CVE-2016-9071\",\n \"CVE-2016-9072\",\n \"CVE-2016-9073\",\n \"CVE-2016-9074\",\n \"CVE-2016-9075\",\n \"CVE-2016-9076\",\n \"CVE-2016-9077\"\n );\n script_bugtraq_id(\n 94335,\n 94336,\n 94337,\n 94339,\n 94341\n );\n script_xref(name:\"MFSA\", value:\"2016-89\");\n\n script_name(english:\"Mozilla Firefox < 50.0 Multiple Vulnerabilities\");\n script_summary(english:\"Checks the version of Firefox.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host contains a web browser that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Mozilla Firefox installed on the remote Windows host\nis prior to 50.0. It is, therefore, affected by multiple\nvulnerabilities, the majority of which are remote code execution\nvulnerabilities. An unauthenticated, remote attacker can exploit these\nvulnerabilities by convincing a user to visit a specially crafted\nwebsite, resulting in the execution of arbitrary code in the context\nof the current user.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Mozilla Firefox version 50.0 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2016/11/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/11/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/11/18\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:mozilla:firefox\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"mozilla_org_installed.nasl\");\n script_require_keys(\"Mozilla/Firefox/Version\");\n\n exit(0);\n}\n\ninclude(\"mozilla_version.inc\");\n\nport = get_kb_item(\"SMB/transport\");\nif (!port) port = 445;\n\ninstalls = get_kb_list(\"SMB/Mozilla/Firefox/*\");\nif (isnull(installs)) audit(AUDIT_NOT_INST, \"Firefox\");\n\nmozilla_check_version(installs:installs, product:'firefox', esr:FALSE, fix:'50', severity:SECURITY_HOLE);\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:10:09", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5290", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9071", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9063", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9066", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9077", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9069", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9075", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9073", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9068", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9064", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5289", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9076", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9070", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5291", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5296", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5292", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9067", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5297"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "16.10", "packageVersion": "50.0+build2-0ubuntu0.16.10.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "50.0+build2-0ubuntu0.14.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "16.04", "packageVersion": "50.0+build2-0ubuntu0.16.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "50.0+build2-0ubuntu0.12.04.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox", "operator": "lt"}], "description": "Christian Holler, Andrew McCreight, Dan Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey, Jesse Ruderman, Markus Stange, Olli Pettay, Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell Jesup discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5289, CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in some circumstances. An attacker could potentially exploit this to obtain sensitive information. (CVE-2016-5291)\n\nA crash was discovered when parsing URLs in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to execute arbitrary code. (CVE-2016-5292)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG content. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5296)\n\nAn error was discovered in argument length checking in Javascript. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5297)\n\nAn integer overflow was discovered in the Expat library. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash. (CVE-2016-9063)\n\nIt was discovered that addon updates failed to verify that the addon ID inside the signed package matched the ID of the addon being updated. An attacker that could perform a man-in-the-middle (MITM) attack could potentially exploit this to provide malicious addon updates. (CVE-2016-9064)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9066)\n\n2 use-after-free bugs were discovered during DOM operations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9067, CVE-2016-9069)\n\nA heap use-after-free was discovered during web animations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9068)\n\nIt was discovered that a page loaded in to the sidebar through a bookmark could reference a privileged chrome window. An attacker could potentially exploit this to bypass same origin restrictions. (CVE-2016-9070)\n\nAn issue was discovered with Content Security Policy (CSP) in combination with HTTP to HTTPS redirection. An attacker could potentially exploit this to verify whether a site is within the user\u2019s browsing history. (CVE-2016-9071)\n\nAn issue was discovered with the windows.create() WebExtensions API. If a user were tricked in to installing a malicious extension, an attacker could potentially exploit this to escape the WebExtensions sandbox. (CVE-2016-9073)\n\nIt was discovered that WebExtensions can use the mozAddonManager API. An attacker could potentially exploit this to install additional extensions without user permission. (CVE-2016-9075)\n\nIt was discovered that <select> element dropdown menus can cover location bar content when e10s is enabled. An attacker could potentially exploit this to conduct UI spoofing attacks. (CVE-2016-9076)\n\nIt was discovered that canvas allows the use of the feDisplacementMap filter on cross-origin images. An attacker could potentially exploit this to conduct timing attacks. (CVE-2016-9077)", "edition": 4, "reporter": "Ubuntu", "published": "2016-11-19T00:00:00", "title": "Firefox vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2016-11-19T00:00:00", "id": "USN-3124-1", "href": "https://usn.ubuntu.com/3124-1/", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:09:58", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5290", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9066", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-9079", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5291", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5296", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-5297"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "16.10", "packageVersion": "1:45.5.1+build1-0ubuntu0.16.10.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "16.04", "packageVersion": "1:45.5.1+build1-0ubuntu0.16.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "1:45.5.1+build1-0ubuntu0.14.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "1:45.5.1+build1-0ubuntu0.12.04.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "thunderbird", "operator": "lt"}], "description": "Christian Holler, Jon Coppeard, Olli Pettay, Ehsan Akhgari, Gary Kwong, Tooru Fujisawa, and Randell Jesup discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5290)\n\nA same-origin policy bypass was discovered with local HTML files in some circumstances. An attacker could potentially exploit this to obtain sensitive information. (CVE-2016-5291)\n\nA heap buffer-overflow was discovered in Cairo when processing SVG content. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5296)\n\nAn error was discovered in argument length checking in Javascript. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5297)\n\nA buffer overflow was discovered in nsScriptLoadHandler. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9066)\n\nA use-after-free was discovered in SVG animations. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-9079)", "edition": 4, "reporter": "Ubuntu", "published": "2016-12-01T00:00:00", "title": "Thunderbird vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2016-12-01T00:00:00", "id": "USN-3141-1", "href": "https://usn.ubuntu.com/3141-1/", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "suse": [{"lastseen": "2016-11-18T17:27:26", "references": ["https://bugzilla.suse.com/1010405", "https://bugzilla.suse.com/1010421", "https://bugzilla.suse.com/1010402", "https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010422", "https://bugzilla.suse.com/1010408", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010399", "https://bugzilla.suse.com/1010395", "https://bugzilla.suse.com/1010406", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010423", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1010425", "https://bugzilla.suse.com/1010420", "https://bugzilla.suse.com/1010424", "https://bugzilla.suse.com/1009026", "https://bugzilla.suse.com/1010409", "https://bugzilla.suse.com/1010426"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "i586", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-39.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "50.0-39.1", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "i586", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0-39.2.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "50.0-39.2", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0-39.2.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "i586", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-88.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-49.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "3.26.2-32.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-32.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "3.26.2-49.1", "arch": "i586", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-49.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "3.26.2-32.1", "arch": "i586", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-32.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "50.0-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0-88.1.x86_64.rpm", "operator": "lt"}], "edition": 1, "description": "This update to Mozilla Firefox 50.0 fixes a number of security issues.\n\n The following vulnerabilities were fixed in Mozilla Firefox (MFSA 2016-89):\n\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bmo#1292443)\n - CVE-2016-5292: URL parsing causes crash (bmo#1288482)\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bmo#1303678)\n - CVE-2016-9064: Addons update must verify IDs match between current and\n new versions (bmo#1303418)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bmo#1299686)\n - CVE-2016-9067: heap-use-after-free in nsINode::ReplaceOrInsertBefore\n (bmo#1301777, bmo#1308922 (CVE-2016-9069))\n - CVE-2016-9068: heap-use-after-free in nsRefreshDriver (bmo#1302973)\n - CVE-2016-9075: WebExtensions can access the mozAddonManager API and use\n it to gain elevated privileges (bmo#1295324)\n - CVE-2016-9077: Canvas filters allow feDisplacementMaps to be applied to\n cross-origin images, allowing timing attacks on them (bmo#1298552)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bmo#1292159)\n - CVE-2016-9070: Sidebar bookmark can have reference to chrome window\n (bmo#1281071)\n - CVE-2016-9073: windows.create schema doesn't specify "format":\n "relativeUrl" (bmo#1289273)\n - CVE-2016-9076: select dropdown menu can be used for URL bar spoofing on\n e10s (bmo#1276976)\n - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse in\n expat (bmo#1274777)\n - CVE-2016-9071: Probe browser history via HSTS/301 redirect + CSP\n (bmo#1285003)\n - CVE-2016-5289: Memory safety bugs fixed in Firefox 50\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5\n\n The following vulnerabilities were fixed in Mozilla NSS 3.26.1:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler\n (bmo#1293334)\n\n Mozilla Firefox now requires mozilla-nss 3.26.2.\n\n New features in Mozilla Firefox:\n\n - Updates to keyboard shortcuts Set a preference to have Ctrl+Tab cycle\n through tabs in recently used order View a page in Reader Mode by using\n Ctrl+Alt+R\n - Added option to Find in page that allows users to limit search to whole\n words only\n - Added download protection for a large number of executable file types on\n Windows, Mac and Linux\n - Fixed rendering of dashed and dotted borders with rounded corners\n (border-radius)\n - Added a built-in Emoji set for operating systems without native Emoji\n fonts\n - Blocked versions of libavcodec older than 54.35.1\n - additional locale\n\n mozilla-nss was updated to 3.26.2, incorporating the following changes:\n\n - the selfserv test utility has been enhanced to support ALPN (HTTP/1.1)\n and 0-RTT\n - The following CA certificate was added: CN = ISRG Root X1\n - NPN is disabled and ALPN is enabled by default\n - MD5 signature algorithms sent by the server in CertificateRequest\n messages are now properly ignored\n\n", "reporter": "Suse", "published": "2016-11-18T17:06:44", "title": "Security update for MozillaFirefox, mozilla-nss (important)", "type": "suse", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2016-11-18T17:06:44", "id": "OPENSUSE-SU-2016:2861-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-11/msg00033.html", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2016-12-06T13:30:19", "references": ["https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1010411", "https://bugzilla.suse.com/1012964", "https://bugzilla.suse.com/1009026"], "affectedPackage": [{"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "x86_64", "packageName": "MozillaThunderbird-translations-other", "packageFilename": "MozillaThunderbird-translations-other-45.5.1-17.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "x86_64", "packageName": "MozillaThunderbird-buildsymbols", "packageFilename": "MozillaThunderbird-buildsymbols-45.5.1-17.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "aarch64", "packageName": "MozillaThunderbird-translations-common", "packageFilename": "MozillaThunderbird-translations-common-45.5.1-17.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "s390x", "packageName": "MozillaThunderbird-translations-common", "packageFilename": "MozillaThunderbird-translations-common-45.5.1-17.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "x86_64", "packageName": "MozillaThunderbird-devel", "packageFilename": "MozillaThunderbird-devel-45.5.1-17.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "s390x", "packageName": "MozillaThunderbird-devel", "packageFilename": "MozillaThunderbird-devel-45.5.1-17.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "aarch64", "packageName": "MozillaThunderbird-devel", "packageFilename": "MozillaThunderbird-devel-45.5.1-17.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "aarch64", "packageName": "MozillaThunderbird-translations-other", "packageFilename": "MozillaThunderbird-translations-other-45.5.1-17.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "aarch64", "packageName": "MozillaThunderbird", "packageFilename": "MozillaThunderbird-45.5.1-17.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "x86_64", "packageName": "MozillaThunderbird-translations-common", "packageFilename": "MozillaThunderbird-translations-common-45.5.1-17.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "s390x", "packageName": "MozillaThunderbird", "packageFilename": "MozillaThunderbird-45.5.1-17.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "x86_64", "packageName": "MozillaThunderbird", "packageFilename": "MozillaThunderbird-45.5.1-17.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Package Hub for SUSE Linux Enterprise", "OSVersion": "12", "packageVersion": "45.5.1-17.1", "arch": "s390x", "packageName": "MozillaThunderbird-translations-other", "packageFilename": "MozillaThunderbird-translations-other-45.5.1-17.1.s390x.rpm", "operator": "lt"}], "edition": 1, "description": "This update for MozillaThunderbird fixes some potential security issues\n and bugs.\n\n The following security flaws cannot be exploited through email because\n scripting is disabled when reading mail, but are potentially risks in\n browser or browser-like contexts:\n\n - CVE-2016-9079: SVG Animation Remote Code Execution (MFSA 2016-92,\n bsc#1012964)\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bsc#1010411)\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bsc#1010401)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bsc#1010404)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bsc#1010410)\n - CVE-2016-5290: Memory safety bugs fixed in Thunderbird ESR 45.5\n (bsc#1010427)\n\n The update contains changes in behavior:\n\n - Changed recipient address entry: Arrow-keys now copy the pop-up value to\n the input field. Mouse-hovered pop-up value can no longer be confirmed\n with tab or enter key. This restores the behavior of Thunderbird 24.\n - Support changes to character limit in Twitter\n\n The following bugs were fixed:\n\n - Reply with selected text containing quote resulted in wrong quoting\n level indication\n - Email invitation might not be displayed when description contains\n non-ASCII characters\n - Attempting to sort messages on the Date field whilst a quick filter is\n applied got stuck\n on sort descending\n - Mail address display at header pane displayed incorrectly if the address\n contains UTF-8 according to RFC 6532\n\n", "reporter": "Suse", "published": "2016-12-06T13:07:20", "type": "suse", "title": "Security update for MozillaThunderbird (important)", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2016-12-06T13:07:20", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00012.html", "id": "OPENSUSE-SU-2016:3019-1", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2016-12-13T14:02:36", "references": ["https://bugzilla.suse.com/1010402", "https://bugzilla.suse.com/992549", "https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010517", "https://bugzilla.suse.com/1010422", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010395", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1012964", "https://bugzilla.suse.com/1009026", "https://bugzilla.suse.com/1000751"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "libfreebl3", "arch": "s390x", "packageFilename": "libfreebl3-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "libfreebl3", "arch": "i586", "packageFilename": "libfreebl3-3.21.3-30.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debuginfo-32bit", "arch": "s390x", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debuginfo", "arch": "i586", "packageFilename": "mozilla-nss-debuginfo-3.21.3-30.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debugsource", "arch": "s390x", "packageFilename": "mozilla-nss-debugsource-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debuginfo-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debugsource", "arch": "i586", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-63.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-translations", "arch": "i586", "packageFilename": "MozillaFirefox-translations-45.5.1esr-63.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debuginfo", "arch": "s390x", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-63.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-tools", "arch": "s390x", "packageFilename": "mozilla-nss-tools-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-32bit", "arch": "s390x", "packageFilename": "mozilla-nss-32bit-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-63.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-63.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debugsource", "arch": "x86_64", "packageFilename": "mozilla-nss-debugsource-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss", "arch": "s390x", "packageFilename": "mozilla-nss-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debuginfo", "arch": "x86_64", "packageFilename": "mozilla-nss-debuginfo-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debuginfo", "arch": "x86_64", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-63.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debuginfo", "arch": "s390x", "packageFilename": "mozilla-nss-debuginfo-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-devel", "arch": "s390x", "packageFilename": "mozilla-nss-devel-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox", "arch": "s390x", "packageFilename": "MozillaFirefox-45.5.1esr-63.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debugsource", "arch": "s390x", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-63.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-devel", "arch": "i586", "packageFilename": "mozilla-nss-devel-3.21.3-30.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debugsource", "arch": "x86_64", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-63.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-devel", "arch": "x86_64", "packageFilename": "mozilla-nss-devel-3.21.3-30.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-translations", "arch": "s390x", "packageFilename": "MozillaFirefox-translations-45.5.1esr-63.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "libfreebl3-32bit", "arch": "s390x", "packageFilename": "libfreebl3-32bit-3.21.3-30.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox", "arch": "i586", "packageFilename": "MozillaFirefox-45.5.1esr-63.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-tools", "arch": "i586", "packageFilename": "mozilla-nss-tools-3.21.3-30.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "45.5.1esr-63.1", "packageName": "MozillaFirefox-debuginfo", "arch": "i586", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-63.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss-debugsource", "arch": "i586", "packageFilename": "mozilla-nss-debugsource-3.21.3-30.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "3.21.3-30.1", "packageName": "mozilla-nss", "arch": "i586", "packageFilename": "mozilla-nss-3.21.3-30.1.i586.rpm", "operator": "lt"}], "edition": 1, "description": "This update for MozillaFirefox, mozilla-nss fixes security issues and bugs.\n\n The following vulnerabilities were fixed in Firefox ESR 45.5.1\n (bsc#1009026):\n\n - CVE-2016-9079: Use-after-free in SVG Animation (bsc#1012964 MFSA 2016-92)\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bsc#1010401)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bsc#1010404)\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bsc#1010395)\n - CVE-2016-9064: Addons update must verify IDs match between current and\n new versions (bsc#1010402)\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5 (bsc#1010427)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bsc#1010410)\n\n The following vulnerabilities were fixed in mozilla-nss 3.21.3:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler\n (bsc#1010422)\n - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey /\n ssl3_ComputeRecordMACConstantTime causes server crash (bsc#1010517)\n\n The following bugs were fixed:\n\n - Firefox would fail to go into fullscreen mode with some window managers\n (bsc#992549)\n - font warning messages would flood console, now using fontconfig\n configuration from firefox-fontconfig instead of the system one\n (bsc#1000751)\n\n", "reporter": "Suse", "published": "2016-12-13T13:07:50", "title": "Security update for MozillaFirefox, mozilla-nss (important)", "type": "suse", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066", "CVE-2016-5285"], "modified": "2016-12-13T13:07:50", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00049.html", "id": "SUSE-SU-2016:3105-1", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2016-12-12T06:02:46", "references": ["https://bugzilla.suse.com/1010402", "https://bugzilla.suse.com/992549", "https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010517", "https://bugzilla.suse.com/1010422", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010395", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1012964", "https://bugzilla.suse.com/1009026", "https://bugzilla.suse.com/1000751"], "affectedPackage": [{"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "s390x", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "ppc64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "s390x", "packageFilename": "libfreebl3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "s390x", "packageFilename": "libsoftokn3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "i586", "packageFilename": "libfreebl3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-devel", "arch": "ia64", "packageFilename": "mozilla-nss-devel-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "x86_64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "i586", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "i586", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "ia64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "s390x", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "ppc64", "packageFilename": "mozilla-nss-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "i586", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "i586", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "s390x", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-devel", "arch": "i586", "packageFilename": "mozilla-nss-devel-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "ia64", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-x86", "arch": "ia64", "packageFilename": "libfreebl3-x86-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "i586", "packageFilename": "libsoftokn3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "i586", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "ppc64", "packageFilename": "libsoftokn3-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "s390x", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "x86_64", "packageFilename": "libsoftokn3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-devel", "arch": "x86_64", "packageFilename": "MozillaFirefox-devel-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "s390x", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "x86_64", "packageFilename": "libsoftokn3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "ppc64", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "s390x", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-devel", "arch": "x86_64", "packageFilename": "mozilla-nss-devel-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "x86_64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "ia64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "s390x", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-devel", "arch": "s390x", "packageFilename": "MozillaFirefox-devel-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "s390x", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-x86", "arch": "ia64", "packageFilename": "libsoftokn3-x86-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "x86_64", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "s390x", "packageFilename": "mozilla-nss-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "x86_64", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "s390x", "packageFilename": "mozilla-nss-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "x86_64", "packageFilename": "libsoftokn3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "i586", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-devel", "arch": "ppc64", "packageFilename": "MozillaFirefox-devel-45.5.1esr-59.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "x86_64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "ppc64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "x86_64", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "x86_64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "s390x", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "x86_64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "ppc64", "packageFilename": "libfreebl3-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "ppc64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "s390x", "packageFilename": "mozilla-nss-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "s390x", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "i586", "packageFilename": "libsoftokn3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "i586", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "s390x", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "x86_64", "packageFilename": "libsoftokn3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "x86_64", "packageFilename": "libsoftokn3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "ia64", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "ppc64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "s390x", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "ppc64", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "ppc64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "ppc64", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-devel", "arch": "s390x", "packageFilename": "mozilla-nss-devel-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "s390x", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "i586", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "i586", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "i586", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-devel", "arch": "ppc64", "packageFilename": "mozilla-nss-devel-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "ia64", "packageFilename": "libfreebl3-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "ia64", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "s390x", "packageFilename": "libfreebl3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "i586", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "x86_64", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "x86_64", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "i586", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "s390x", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "x86_64", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "s390x", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "x86_64", "packageFilename": "libfreebl3-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "s390x", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "s390x", "packageFilename": "libsoftokn3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-x86", "arch": "ia64", "packageFilename": "mozilla-nss-x86-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "x86_64", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "i586", "packageFilename": "mozilla-nss-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "s390x", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "i586", "packageFilename": "mozilla-nss-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "s390x", "packageFilename": "libfreebl3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "i586", "packageFilename": "mozilla-nss-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-devel", "arch": "i586", "packageFilename": "MozillaFirefox-devel-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "s390x", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "i586", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "i586", "packageFilename": "libsoftokn3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "s390x", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3-32bit", "arch": "ppc64", "packageFilename": "libsoftokn3-32bit-3.21.3-39.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "ia64", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "ia64", "packageFilename": "mozilla-nss-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "i586", "packageFilename": "libfreebl3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-translations", "arch": "s390x", "packageFilename": "MozillaFirefox-translations-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "x86_64", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "ia64", "packageFilename": "libsoftokn3-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-devel", "arch": "ia64", "packageFilename": "MozillaFirefox-devel-45.5.1esr-59.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "s390x", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "i586", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "x86_64", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libsoftokn3", "arch": "s390x", "packageFilename": "libsoftokn3-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "i586", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Manager Proxy", "OSVersion": "2.1", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox", "arch": "x86_64", "packageFilename": "MozillaFirefox-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Point of Sale", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3", "arch": "i586", "packageFilename": "libfreebl3-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss", "arch": "x86_64", "packageFilename": "mozilla-nss-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "ia64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.ia64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debuginfo", "arch": "s390x", "packageFilename": "mozilla-nss-debuginfo-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "ppc64", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.ppc64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.3", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "s390x", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Manager", "OSVersion": "2.1", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "s390x", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "libfreebl3-32bit", "arch": "x86_64", "packageFilename": "libfreebl3-32bit-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.3", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debugsource", "arch": "i586", "packageFilename": "MozillaFirefox-debugsource-45.5.1esr-59.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "x86_64", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-debugsource", "arch": "i586", "packageFilename": "mozilla-nss-debugsource-3.21.3-39.1.i586.rpm", "operator": "lt"}, {"OS": "SUSE OpenStack Cloud", "OSVersion": "5", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-tools", "arch": "x86_64", "packageFilename": "mozilla-nss-tools-3.21.3-39.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.4", "packageVersion": "3.21.3-39.1", "packageName": "mozilla-nss-32bit", "arch": "s390x", "packageFilename": "mozilla-nss-32bit-3.21.3-39.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Debuginfo", "OSVersion": "11.4", "packageVersion": "45.5.1esr-59.1", "packageName": "MozillaFirefox-debuginfo", "arch": "s390x", "packageFilename": "MozillaFirefox-debuginfo-45.5.1esr-59.1.s390x.rpm", "operator": "lt"}], "edition": 1, "description": "This update for MozillaFirefox, mozilla-nss fixes security issues and bugs.\n\n The following vulnerabilities were fixed in Firefox ESR 45.5.1\n (bsc#1009026 bsc#1012964):\n\n - CVE-2016-9079: Use-after-free in SVG Animation (MFSA 2016-92\n bsc#1012964)\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bsc#1010401)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bsc#1010404)\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bsc#1010395)\n - CVE-2016-9064: Addons update must verify IDs match between current and\n new versions (bsc#1010402)\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5 (bsc#1010427)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bsc#1010410)\n\n The following vulnerabilities were fixed in mozilla-nss 3.21.3:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler\n (bsc#1010422)\n - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey /\n ssl3_ComputeRecordMACConstantTime causes server crash (bsc#1010517)\n\n The following bugs were fixed:\n\n - Firefox would fail to go into fullscreen mode with some window managers\n (bsc#992549)\n - font warning messages would flood console, now using fontconfig\n configuration from firefox-fontconfig instead of the system one\n (bsc#1000751)\n\n", "reporter": "Suse", "published": "2016-12-10T23:09:49", "title": "Security update for MozillaFirefox, mozilla-nss (important)", "type": "suse", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066", "CVE-2016-5285"], "modified": "2016-12-10T23:09:49", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00037.html", "id": "SUSE-SU-2016:3080-1", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2016-12-05T21:29:45", "references": ["https://bugzilla.suse.com/1010402", "https://bugzilla.suse.com/992549", "https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010517", "https://bugzilla.suse.com/1010422", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010395", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1009026"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-hmac-32bit", "packageFilename": "libsoftokn3-hmac-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-hmac", "packageFilename": "libfreebl3-hmac-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "aarch64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3-hmac", "packageFilename": "libsoftokn3-hmac-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-hmac-32bit", "packageFilename": "libfreebl3-hmac-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "ppc64le", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "aarch64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.21.3-50.1.aarch64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "45.5.0esr-88.1", "arch": "s390x", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-45.5.0esr-88.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "s390x", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.21.3-50.1.s390x.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for SAP", "OSVersion": "12", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "3.21.3-50.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.21.3-50.1.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "12", "packageVersion": "45.5.0esr-88.1", "arch": "ppc64le", "packageName": "MozillaFirefox-translations", "packageFilename": "MozillaFirefox-translations-45.5.0esr-88.1.ppc64le.rpm", "operator": "lt"}], "edition": 1, "description": "This update for MozillaFirefox, mozilla-nss fixes security issues and bugs.\n\n The following vulnerabilities were fixed in Firefox ESR 45.5 (bsc#1009026):\n\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bsc#1010401)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bsc#1010404)\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bsc#1010395)\n - CVE-2016-9064: Addons update must verify IDs match between current and\n new versions (bsc#1010402)\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5 (bsc#1010427)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bsc#1010410)\n\n The following vulnerabilities were fixed in mozilla-nss 3.21.3:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler\n (bsc#1010422)\n - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey /\n ssl3_ComputeRecordMACConstantTime causes server crash (bsc#1010517)\n\n The following bugs were fixed:\n\n - Firefox would fail to go into fullscreen mode with some window managers\n (bsc#992549)\n\n The Mozilla Firefox changelog was amended to document patched dropped in a\n previous update.\n\n", "reporter": "Suse", "published": "2016-12-05T21:07:10", "type": "suse", "title": "Security update for MozillaFirefox, mozilla-nss (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066", "CVE-2016-5285"], "modified": "2016-12-05T21:07:10", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00011.html", "id": "SUSE-SU-2016:3014-1", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2016-12-05T21:29:45", "references": ["https://bugzilla.suse.com/1010401", "https://bugzilla.suse.com/1010427", "https://bugzilla.suse.com/1010404", "https://bugzilla.suse.com/1010410", "https://bugzilla.suse.com/1010411", "https://bugzilla.suse.com/1012964", "https://bugzilla.suse.com/1009026", "https://bugzilla.suse.com/1012807"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-certs", "packageFilename": "mozilla-nss-certs-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo-32bit", "packageFilename": "mozilla-nss-sysinit-debuginfo-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-translations-other", "packageFilename": "MozillaThunderbird-translations-other-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-translations-other", "packageFilename": "MozillaThunderbird-translations-other-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-common", "packageFilename": "MozillaFirefox-translations-common-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo-32bit", "packageFilename": "mozilla-nss-certs-debuginfo-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libfreebl3-32bit", "packageFilename": "libfreebl3-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-devel", "packageFilename": "mozilla-nss-devel-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird", "packageFilename": "MozillaThunderbird-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo-32bit", "packageFilename": "libfreebl3-debuginfo-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-buildsymbols", "packageFilename": "MozillaFirefox-buildsymbols-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-debuginfo-32bit", "packageFilename": "mozilla-nss-debuginfo-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-32bit", "packageFilename": "mozilla-nss-sysinit-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-translations-common", "packageFilename": "MozillaThunderbird-translations-common-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-32bit", "packageFilename": "mozilla-nss-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo-32bit", "packageFilename": "libsoftokn3-debuginfo-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-branding-upstream", "packageFilename": "MozillaFirefox-branding-upstream-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-debugsource", "packageFilename": "MozillaThunderbird-debugsource-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-buildsymbols", "packageFilename": "MozillaThunderbird-buildsymbols-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox", "packageFilename": "MozillaFirefox-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-sysinit", "packageFilename": "mozilla-nss-sysinit-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-translations-other", "packageFilename": "MozillaFirefox-translations-other-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-debugsource", "packageFilename": "mozilla-nss-debugsource-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-debuginfo", "packageFilename": "MozillaThunderbird-debuginfo-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-debugsource", "packageFilename": "MozillaFirefox-debugsource-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-sysinit-debuginfo", "packageFilename": "mozilla-nss-sysinit-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-buildsymbols", "packageFilename": "MozillaThunderbird-buildsymbols-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libfreebl3-debuginfo", "packageFilename": "libfreebl3-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-tools", "packageFilename": "mozilla-nss-tools-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird", "packageFilename": "MozillaThunderbird-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-debuginfo", "packageFilename": "MozillaThunderbird-debuginfo-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-debugsource", "packageFilename": "MozillaThunderbird-debugsource-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libsoftokn3-32bit", "packageFilename": "libsoftokn3-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "i586", "packageName": "MozillaThunderbird-devel", "packageFilename": "MozillaThunderbird-devel-45.5.1-70.92.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libsoftokn3-debuginfo", "packageFilename": "libsoftokn3-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "x86_64", "packageName": "MozillaFirefox-debuginfo", "packageFilename": "MozillaFirefox-debuginfo-50.0.2-131.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-devel", "packageFilename": "MozillaThunderbird-devel-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss", "packageFilename": "mozilla-nss-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "45.5.1-70.92.1", "arch": "x86_64", "packageName": "MozillaThunderbird-translations-common", "packageFilename": "MozillaThunderbird-translations-common-45.5.1-70.92.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "libsoftokn3", "packageFilename": "libsoftokn3-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-32bit", "packageFilename": "mozilla-nss-certs-32bit-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-tools-debuginfo", "packageFilename": "mozilla-nss-tools-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "mozilla-nss-certs-debuginfo", "packageFilename": "mozilla-nss-certs-debuginfo-3.26.2-94.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "i586", "packageName": "mozilla-nss-debuginfo", "packageFilename": "mozilla-nss-debuginfo-3.26.2-94.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "50.0.2-131.1", "arch": "i586", "packageName": "MozillaFirefox-devel", "packageFilename": "MozillaFirefox-devel-50.0.2-131.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "3.26.2-94.1", "arch": "x86_64", "packageName": "libfreebl3", "packageFilename": "libfreebl3-3.26.2-94.1.x86_64.rpm", "operator": "lt"}], "edition": 1, "description": "This update to Mozilla Firefox 50.0.2, Thunderbird 45.5.1 and NSS 3.16.2\n fixes a number of security issues.\n\n The following vulnerabilities were fixed in Mozilla Firefox (MFSA 2016-89):\n\n - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1\n (bmo#1292443)\n - CVE-2016-5292: URL parsing causes crash (bmo#1288482)\n - CVE-2016-5297: Incorrect argument length checking in Javascript\n (bmo#1303678)\n - CVE-2016-9064: Addons update must verify IDs match between current\n and new versions (bmo#1303418)\n - CVE-2016-9066: Integer overflow leading to a buffer overflow in\n nsScriptLoadHandler (bmo#1299686)\n - CVE-2016-9067: heap-use-after-free in nsINode::ReplaceOrInsertBefore\n (bmo#1301777, bmo#1308922 (CVE-2016-9069))\n - CVE-2016-9068: heap-use-after-free in nsRefreshDriver (bmo#1302973)\n - CVE-2016-9075: WebExtensions can access the mozAddonManager API and\n use it to gain elevated privileges (bmo#1295324)\n - CVE-2016-9077: Canvas filters allow feDisplacementMaps to be applied\n to cross-origin images, allowing timing attacks on them (bmo#1298552)\n - CVE-2016-5291: Same-origin policy violation using local HTML file and\n saved shortcut file (bmo#1292159)\n - CVE-2016-9070: Sidebar bookmark can have reference to chrome window\n (bmo#1281071)\n - CVE-2016-9073: windows.create schema doesn't specify "format":\n "relativeUrl" (bmo#1289273)\n - CVE-2016-9076: select dropdown menu can be used for URL bar spoofing\n on e10s (bmo#1276976)\n - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse in\n expat (bmo#1274777)\n - CVE-2016-9071: Probe browser history via HSTS/301 redirect + CSP\n (bmo#1285003)\n - CVE-2016-5289: Memory safety bugs fixed in Firefox 50\n - CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR\n 45.5\n\n The following vulnerabilities were fixed in Mozilla NSS 3.26.1:\n\n - CVE-2016-9074: Insufficient timing side-channel resistance in\n divSpoiler (bmo#1293334)\n\n Mozilla Firefox now requires mozilla-nss 3.26.2.\n\n New features in Mozilla Firefox:\n\n - Updates to keyboard shortcuts Set a preference to have Ctrl+Tab cycle\n through tabs in recently used order View a page in Reader Mode by\n using Ctrl+Alt+R\n - Added option to Find in page that allows users to limit search to\n whole words only\n - Added download protection for a large number of executable file types\n on Windows, Mac and Linux\n - Fixed rendering of dashed and dotted borders with rounded corners\n (border-radius)\n - Added a built-in Emoji set for operating systems without native Emoji\n fonts\n - Blocked versions of libavcodec older than 54.35.1\n - additional locale\n\n mozilla-nss was updated to 3.26.2, incorporating the following changes:\n\n - the selfserv test utility has been enhanced to support ALPN\n (HTTP/1.1) and 0-RTT\n - The following CA certificate was added: CN = ISRG Root X1\n - NPN is disabled and ALPN is enabled by default\n - MD5 signature algorithms sent by the server in CertificateRequest\n messages are now properly ignored\n\n", "reporter": "Suse", "published": "2016-12-05T19:07:18", "type": "suse", "title": "Security update for Mozilla Firefox, Thunderbird and NSS (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9065", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-5299", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5289", "CVE-2016-5295", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-5298", "CVE-2016-9061", "CVE-2016-9072", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-5293", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9078", "CVE-2016-9073", "CVE-2016-9076", "CVE-2016-9062"], "modified": "2016-12-05T19:07:18", "href": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00010.html", "id": "OPENSUSE-SU-2016:3011-1", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2017-09-14T22:30:08", "references": ["https://bugzilla.suse.com/1047240", "https://bugzilla.suse.com/1046268", "https://bugzilla.suse.com/1047964", "https://bugzilla.suse.com/1051643", "https://bugzilla.suse.com/1035062", "https://bugzilla.suse.com/1045987", "https://bugzilla.suse.com/938657", "https://bugzilla.suse.com/1048679", "https://bugzilla.suse.com/1046853", "https://bugzilla.suse.com/1045384", "https://bugzilla.suse.com/944903", "https://bugzilla.suse.com/1036659", "https://bugzilla.suse.com/1044107", "https://bugzilla.suse.com/1044840", "https://bugzilla.suse.com/1027908", "https://bugzilla.suse.com/1053409", "https://bugzilla.suse.com/1046858", "https://bugzilla.suse.com/1047785", "https://bugzilla.suse.com/1033236", "https://bugzilla.suse.com/1047236", "https://bugzilla.suse.com/963041", "https://bugzilla.suse.com/954661", "https://bugzilla.suse.com/1048483", "https://bugzilla.suse.com/1026825", "https://bugzilla.suse.com/1004995", "https://bugzilla.suse.com/1044095", "https://bugzilla.suse.com/1017420", "https://bugzilla.suse.com/1042392", "https://bugzilla.suse.com/1029523", "https://bugzilla.suse.com/1038984", "https://bugzilla.suse.com/1043333", "https://bugzilla.suse.com/1028281", "https://bugzilla.suse.com/1009745", "https://bugzilla.suse.com/1028723", "https://bugzilla.suse.com/1045735", "https://bugzilla.suse.com/1043218", "https://bugzilla.suse.com/1050396", "https://bugzilla.suse.com/1046417", "https://bugzilla.suse.com/1046659", "https://bugzilla.suse.com/1014471", "https://bugzilla.suse.com/1048605", "https://bugzilla.suse.com/1027079", "https://bugzilla.suse.com/1050484", "https://bugzilla.suse.com/1048715", "https://bugzilla.suse.com/1019637", "https://bugzilla.suse.com/902364", "https://bugzilla.suse.com/1038132", "https://bugzilla.suse.com/874665", "https://bugzilla.suse.com/1027688", "https://bugzilla.suse.com/960820", "https://bugzilla.suse.com/1047379", "https://bugzilla.suse.com/1032706", "https://bugzilla.suse.com/1049344", "https://bugzilla.suse.com/1047310", "https://bugzilla.suse.com/1051626", "https://bugzilla.suse.com/1044175", "https://bugzilla.suse.com/1048315", "https://bugzilla.suse.com/1052030", "https://bugzilla.suse.com/1031756", "https://bugzilla.suse.com/1052759", "https://bugzilla.suse.com/1051644", "https://bugzilla.suse.com/1047965", "https://bugzilla.suse.com/1047008", "https://bugzilla.suse.com/1038444"], "affectedPackage": [{"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-2.3.9", "arch": "x86_64", "packageName": "sles12-salt-api-docker-image", "packageFilename": "sles12-salt-api-docker-image-1.1.0-2.3.9.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "0.0.0+20170901.git_r55_17ecbd3-2.3.3", "arch": "x86_64", "packageName": "container-feeder", "packageFilename": "container-feeder-0.0.0+20170901.git_r55_17ecbd3-2.3.3.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-4.3.9", "arch": "x86_64", "packageName": "sles12-velum-docker-image", "packageFilename": "sles12-velum-docker-image-1.1.0-4.3.9.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-4.3.10", "arch": "x86_64", "packageName": "sles12-salt-master-docker-image", "packageFilename": "sles12-salt-master-docker-image-1.1.0-4.3.10.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-2.3.10", "arch": "x86_64", "packageName": "sles12-mariadb-docker-image", "packageFilename": "sles12-mariadb-docker-image-1.1.0-2.3.10.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "0.0.0+git_r155_93e40ab-2.3.3", "arch": "noarch", "packageName": "caasp-container-manifests", "packageFilename": "caasp-container-manifests-0.0.0+git_r155_93e40ab-2.3.3.noarch.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-2.3.10", "arch": "x86_64", "packageName": "sles12-pv-recycler-node-docker-image", "packageFilename": "sles12-pv-recycler-node-docker-image-1.1.0-2.3.10.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-2.3.11", "arch": "x86_64", "packageName": "sles12-pause-docker-image", "packageFilename": "sles12-pause-docker-image-1.1.0-2.3.11.x86_64.rpm", "operator": "lt"}, {"OS": "SUSE Container as a Service Platform ALL", "OSVersion": "any", "packageVersion": "1.1.0-2.3.8", "arch": "x86_64", "packageName": "sles12-salt-minion-docker-image", "packageFilename": "sles12-salt-minion-docker-image-1.1.0-2.3.8.x86_64.rpm", "operator": "lt"}], "description": "The Docker images provided with SUSE CaaS Platform 1.0 have been updated\n to include the following updates:\n\n libzypp:\n\n - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows,\n mainly for unsigned repositories and packages. (bsc#1045735, bsc#1038984)\n - Fix gpg-pubkey release (creation time) computation. (bsc#1036659)\n - Update lsof blacklist. (bsc#1046417)\n - Re-probe on refresh if the repository type changes. (bsc#1048315)\n - Propagate proper error code to DownloadProgressReport. (bsc#1047785)\n - Allow to trigger an appdata refresh unconditionally. (bsc#1009745)\n - Support custom repo variables defined in /etc/zypp/vars.d.\n - Adapt loop mounting of ISO images. (bsc#1038132, bsc#1033236)\n - Fix potential crash if repository has no baseurl. (bsc#1043218)\n\n zypper:\n\n - CVE-2017-7436: Adapt download callback to report and handle unsigned\n packages. (bsc#1038984)\n - Report missing/optional files as 'not found' rather than 'error'.\n (bsc#1047785)\n - Document support for custom repository variables defined in\n /etc/zypp/vars.d.\n - Emphasize that it depends on how fast PackageKit will respond to a\n 'quit' request sent if PK blocks package management.\n\n libgcrypt:\n\n - Fix infinite loop in gnome-keyring-daemon caused by attempt to read from\n random device left open by libgcrypt. (bsc#1043333)\n - Avoid seeding the DRBG during FIPS power-up selftests. (bsc#1046659)\n - Fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping some\n of the tests. (bsc#1046659)\n - dlsym returns PLT address on s390x, dlopen libgcrypt20.so before calling\n dlsym. (bsc#1047008)\n\n lua51:\n\n - Add Lua(API) and Lua(devel) symbols to fix building of lua51-luasocket.\n (bsc#1051626)\n\n cyrus-sasl:\n\n - Fix unknown authentication mechanism: kerberos5 (bsc#1026825)\n - Really use SASLAUTHD_PARAMS variable (bsc#938657)\n - Make sure /usr/sbin/rcsaslauthd exists\n - Add /usr/sbin/rcsaslauthd symbolic link to /usr/sbin/service\n (bsc#1014471)\n - Silence "GSSAPI client step 1" debug log message (bsc#1044840)\n\n libxml2:\n\n - CVE-2017-8872: Out-of-bounds read in htmlParseTryOrFinish. (bsc#1038444)\n\n curl:\n\n - CVE-2017-1000100: TFP sends more than buffer size and it could lead to a\n denial of service. (bsc#1051644)\n - CVE-2017-1000101: URL globbing out of bounds read could lead to a denial\n of service. (bsc#1051643)\n\n ncurses:\n\n - CVE-2017-11112: Illegal address access in append_acs. (bsc#1047964)\n - CVE-2017-11113: Dereferencing NULL pointer in _nc_parse_entry.\n (bsc#1047965)\n - CVE-2017-10684, CVE-2017-10685: Add modified upstream fix from ncurses\n 6.0 to avoid broken termcap format (bsc#1046853, bsc#1046858,\n bsc#1049344)\n\n sed:\n\n - Don't terminate with a segmentation fault if close of last file\n descriptor fails. (bsc#954661)\n\n openssl:\n\n - Remove DES-CBC3-SHA based ciphers from DEFAULT_SUSE to address SWEET32\n problem. (bsc#1027908)\n - Use getrandom syscall instead of reading from /dev/urandom to get at\n least 128 bits of entropy to comply with FIPS 140.2 IG 7.14.\n (bsc#1027079 bsc#1044175)\n - Fix x86 extended feature detection (bsc#1029523)\n - Allow runtime switching of s390x capabilities via the "OPENSSL_s390xcap"\n environmental variable. (bsc#1028723)\n - Add back certificate initialization set_cert_key_stuff() which was\n removed in a previous update. (bsc#1028281)\n - Fix a bug in XTS key handling. (bsc#1019637)\n - Don't run FIPS power-up self-tests when the checksum files aren't\n installed. (bsc#1042392)\n\n procps:\n\n - Don't set buffering on invalid file descriptor. (bsc#1053409)\n\n expat:\n\n - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading\n to unexpected behaviour. (bsc#1047240)\n - CVE-2017-9233: External Entity Vulnerability could lead to denial of\n service. (bsc#1047236)\n\n systemd:\n\n - Revert fix for bsc#1004995 which could have caused boot failure on LVM\n (bsc#1048605)\n - compat-rules: drop the bogus 'import everything' rule (bsc#1046268)\n - core: use an AF_UNIX/SOCK_DGRAM socket for cgroup agent notification\n (bsc#1045384 bsc#1047379)\n - udev/path_id: introduce support for NVMe devices (bsc#1045987)\n - compat-rules: Don't rely on ID_SERIAL when generating 'by-id' links for\n NVMe devices. (bsc#1048679)\n - fstab-generator: Handle NFS "bg" mounts correctly. (bsc#874665,\n fate#323464)\n - timesyncd: Don't use compiled-in list if FallbackNTP has been configured\n explicitly.\n\n insserv-compat:\n\n - Add /etc/init.d hierarchy from former "filesystem" package. (bsc#1035062)\n - Fix directory argument parsing. (bsc#944903)\n - Add perl(Getopt::Long) to list of requirements.\n\n mariadb:\n\n - Update libmysqlclient18 from version 10.0.30 to 10.0.31.\n\n python-pycrypto:\n\n - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew\n (bsc#1017420).\n\n velum:\n\n - Fix loopback IP for proxy exception during initial configuration.\n (bsc#1052759)\n - Set secure flag in cookie. (bsc#1050484)\n - Set VERSION to 1.0.0. (bsc#1050396)\n - Allow kubeconfig download when master is ready. (bsc#1048483)\n\n", "edition": 1, "reporter": "Suse", "published": "2017-09-14T21:11:54", "title": "Security update for CaaS Platform 1.0 images (important)", "type": "suse", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9233", "CVE-2017-10685", "CVE-2016-9063", "CVE-2017-11112", "CVE-2017-8872", "CVE-2017-3456", "CVE-2017-11113", "CVE-2017-7436", "CVE-2017-3309", "CVE-2017-1000101", "CVE-2017-3308", "CVE-2017-3453", "CVE-2017-1000100", "CVE-2017-3464", "CVE-2017-7435", "CVE-2017-10684", "CVE-2013-7459", "CVE-2017-9269"], "modified": "2017-09-14T21:11:54", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-09/msg00047.html", "id": "SUSE-SU-2017:2470-1", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-11T05:54:20", "references": ["https://bugzilla.suse.com/1056193"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171006", "packageFilename": "sles12sp2-docker-image-1.0.2-20171006.x86_64.rpm", "packageName": "sles12sp2-docker-image-1.0.2", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171006", "packageFilename": "sles12sp2-docker-image-1.0.2-20171006.ppc64le.rpm", "packageName": "sles12sp2-docker-image-1.0.2", "arch": "ppc64le", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171006", "packageFilename": "sles12sp2-docker-image-1.0.2-20171006.s390x.rpm", "packageName": "sles12sp2-docker-image-1.0.2", "arch": "s390x", "operator": "lt"}], "description": "The SUSE Linux Enterprise Server 12 SP2 container image has been updated\n to include security and stability fixes.\n\n The following issues related to building of the container images have been\n fixed:\n\n - Included krb5 package to avoid the inclusion of krb5-mini which gets\n selected as a dependency by the Build Service solver. (bsc#1056193)\n\n A number of security issues that have been already fixed by updates\n released for SUSE Linux Enterprise Server 12 are now included in the base\n image. A package/CVE cross-reference is available below.\n\n bash:\n\n - CVE-2016-9401\n\n expat:\n\n - CVE-2012-6702\n - CVE-2016-5300\n - CVE-2016-9063\n - CVE-2017-9233\n\n curl:\n\n - CVE-2016-9586\n - CVE-2017-1000100\n - CVE-2017-1000101\n - CVE-2017-7407\n\n glibc:\n\n - CVE-2017-1000366\n\n openssl:\n\n - CVE-2017-3731\n - CVE-2017-3732\n - CVE-2016-7055\n\n pam:\n\n - CVE-2015-3238\n\n apparmor:\n\n - CVE-2017-6507\n\n ncurses:\n\n - CVE-2017-10684\n - CVE-2017-10685\n - CVE-2017-11112\n - CVE-2017-11113\n\n libgcrypt:\n\n - CVE-2017-7526\n\n libxml2:\n\n - CVE-2016-1839\n - CVE-2016-4658\n - CVE-2016-9318\n - CVE-2016-9597\n - CVE-2017-0663\n - CVE-2017-5969\n - CVE-2017-7375\n - CVE-2017-7376\n - CVE-2017-8872\n - CVE-2017-9047\n - CVE-2017-9048\n - CVE-2017-9049\n - CVE-2017-9050\n\n libzypp:\n\n - CVE-2017-9269\n - CVE-2017-7435\n - CVE-2017-7436\n\n openldap2:\n\n - CVE-2017-9287\n\n systemd:\n\n - CVE-2016-10156\n - CVE-2017-9217\n - CVE-2017-9445\n\n util-linux:\n\n - CVE-2016-5011\n - CVE-2017-2616\n\n zlib:\n\n - CVE-2016-9840\n - CVE-2016-9841\n - CVE-2016-9842\n - CVE-2016-9843\n\n zypper:\n\n - CVE-2017-7436\n\n Finally, the following packages received non-security fixes:\n\n - binutils\n - cpio\n - cryptsetup\n - cyrus-sasl\n - dbus-1\n - dirmngr\n - e2fsprogs\n - gpg2\n - insserv-compat\n - kmod\n - libsolv\n - libsemanage\n - lvm2\n - lua51\n - netcfg\n - procps\n - sed\n - sg3_utils\n - shadow\n\n", "edition": 1, "reporter": "Suse", "published": "2017-10-11T03:08:09", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Security update for SLES 12-SP2 Docker image (important)", "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2017-7407", "CVE-2017-9233", "CVE-2016-9840", "CVE-2017-7375", "CVE-2017-10685", "CVE-2017-9445", "CVE-2016-9063", "CVE-2016-5300", "CVE-2017-11112", "CVE-2017-5969", "CVE-2016-9318", "CVE-2016-7055", "CVE-2017-3731", "CVE-2017-9049", "CVE-2016-9842", "CVE-2017-2616", "CVE-2017-8872", "CVE-2012-6702", "CVE-2015-3238", "CVE-2017-9048", "CVE-2017-11113", "CVE-2017-3732", "CVE-2017-7376", "CVE-2017-7436", "CVE-2017-1000101", "CVE-2016-9401", "CVE-2017-7526", "CVE-2017-1000366", "CVE-2016-1839", "CVE-2017-0663", "CVE-2016-9843", "CVE-2017-9047", "CVE-2016-9597", "CVE-2017-9217", "CVE-2016-10156", "CVE-2017-1000100", "CVE-2016-9586", "CVE-2016-5011", "CVE-2017-7435", "CVE-2016-9841", "CVE-2016-2037", "CVE-2017-9287", "CVE-2017-6507", "CVE-2016-4658", "CVE-2017-10684", "CVE-2017-9269", "CVE-2017-9050"], "modified": "2017-10-11T03:08:09", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00012.html", "id": "SUSE-SU-2017:2701-1", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-11T05:54:19", "references": ["https://bugzilla.suse.com/975726", "https://bugzilla.suse.com/1056193"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.x86_64.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.ppc64le.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "ppc64le", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.s390x.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "s390x", "operator": "lt"}], "description": "The SUSE Linux Enterprise Server 12 container image has been updated to\n include security and stability fixes.\n\n The following issues related to building of the container images have been\n fixed:\n\n - Included krb5 package to avoid the inclusion of krb5-mini which gets\n selected as a dependency by the Build Service solver. (bsc#1056193)\n - Do not install recommended packages when building container images.\n (bsc#975726)\n\n A number of security issues that have been already fixed by updates\n released for SUSE Linux Enterprise Server 12 are now included in the base\n image. A package/CVE cross-reference is available below.\n\n pam:\n\n - CVE-2015-3238\n\n libtasn1:\n\n - CVE-2015-3622\n - CVE-2016-4008\n\n libidn:\n\n - CVE-2015-2059\n - CVE-2015-8948\n - CVE-2016-6261\n - CVE-2016-6262\n - CVE-2016-6263\n\n zlib:\n\n - CVE-2016-9840\n - CVE-2016-9841\n - CVE-2016-9842\n - CVE-2016-9843\n\n curl:\n\n - CVE-2016-5419\n - CVE-2016-5420\n - CVE-2016-5421\n - CVE-2016-7141\n - CVE-2016-7167\n - CVE-2016-8615\n - CVE-2016-8616\n - CVE-2016-8617\n - CVE-2016-8618\n - CVE-2016-8619\n - CVE-2016-8620\n - CVE-2016-8621\n - CVE-2016-8622\n - CVE-2016-8623\n - CVE-2016-8624\n - CVE-2016-9586\n - CVE-2017-1000100\n - CVE-2017-1000101\n - CVE-2017-7407\n\n openssl:\n\n - CVE-2016-2105\n - CVE-2016-2106\n - CVE-2016-2107\n - CVE-2016-2108\n - CVE-2016-2109\n - CVE-2016-2177\n - CVE-2016-2178\n - CVE-2016-2179\n - CVE-2016-2180\n - CVE-2016-2181\n - CVE-2016-2182\n - CVE-2016-2183\n - CVE-2016-6302\n - CVE-2016-6303\n - CVE-2016-6304\n - CVE-2016-6306\n\n libxml2:\n\n - CVE-2014-0191\n - CVE-2015-8806\n - CVE-2016-1762\n - CVE-2016-1833\n - CVE-2016-1834\n - CVE-2016-1835\n - CVE-2016-1837\n - CVE-2016-1838\n - CVE-2016-1839\n - CVE-2016-1840\n - CVE-2016-2073\n - CVE-2016-3627\n - CVE-2016-3705\n - CVE-2016-4447\n - CVE-2016-4448\n - CVE-2016-4449\n - CVE-2016-4483\n - CVE-2016-4658\n - CVE-2016-9318\n - CVE-2016-9597\n - CVE-2017-9047\n - CVE-2017-9048\n - CVE-2017-9049\n - CVE-2017-9050\n\n util-linux:\n\n - CVE-2015-5218\n - CVE-2016-5011\n - CVE-2017-2616\n\n cracklib:\n\n - CVE-2016-6318\n\n systemd:\n\n - CVE-2014-9770\n - CVE-2015-8842\n - CVE-2016-7796\n\n pcre:\n\n - CVE-2014-8964\n - CVE-2015-2325\n - CVE-2015-2327\n - CVE-2015-2328\n - CVE-2015-3210\n - CVE-2015-3217\n - CVE-2015-5073\n - CVE-2015-8380\n - CVE-2015-8381\n - CVE-2015-8382\n - CVE-2015-8383\n - CVE-2015-8384\n - CVE-2015-8385\n - CVE-2015-8386\n - CVE-2015-8387\n - CVE-2015-8388\n - CVE-2015-8389\n - CVE-2015-8390\n - CVE-2015-8391\n - CVE-2015-8392\n - CVE-2015-8393\n - CVE-2015-8394\n - CVE-2015-8395\n - CVE-2016-1283\n - CVE-2016-3191\n\n appamor:\n\n - CVE-2017-6507\n\n bash:\n\n - CVE-2014-6277\n - CVE-2014-6278\n - CVE-2016-0634\n - CVE-2016-7543\n\n cpio:\n\n - CVE-2016-2037\n\n glibc:\n\n - CVE-2016-1234\n - CVE-2016-3075\n - CVE-2016-3706\n - CVE-2016-4429\n - CVE-2017-1000366\n\n perl:\n\n - CVE-2015-8853\n - CVE-2016-1238\n - CVE-2016-2381\n - CVE-2016-6185\n\n libssh2_org:\n\n - CVE-2016-0787\n\n expat:\n\n - CVE-2012-6702\n - CVE-2015-1283\n - CVE-2016-0718\n - CVE-2016-5300\n - CVE-2016-9063\n - CVE-2017-9233\n\n ncurses:\n\n - CVE-2017-10684\n - CVE-2017-10685\n - CVE-2017-11112\n - CVE-2017-11113\n\n libksba:\n\n - CVE-2016-4574\n - CVE-2016-4579\n\n libgcrypt:\n\n - CVE-2015-7511\n - CVE-2016-6313\n - CVE-2017-7526\n\n dbus-1:\n\n - CVE-2014-7824\n - CVE-2015-0245\n\n Finally, the following packages received non-security fixes:\n\n - augeas\n - bzip2\n - ca-certificates-mozilla\n - coreutils\n - cryptsetup\n - cyrus-sasl\n - dirmngr\n - e2fsprogs\n - findutils\n - gpg2\n - insserv-compat\n - kmod\n - libcap\n - libsolv\n - libzypp\n - openldap2\n - p11-kit\n - permissions\n - procps\n - rpm\n - sed\n - shadow\n - zypper\n\n", "edition": 1, "reporter": "Suse", "published": "2017-10-11T03:06:53", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Security update for SLES 12 Docker image (important)", "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2016-6262", "CVE-2017-7407", "CVE-2015-8388", "CVE-2016-8620", "CVE-2016-8623", "CVE-2017-9233", "CVE-2016-5420", "CVE-2016-9840", "CVE-2016-3705", "CVE-2016-1840", "CVE-2014-0191", "CVE-2016-8615", "CVE-2016-8616", "CVE-2015-5276", "CVE-2015-3210", "CVE-2015-2325", "CVE-2016-6261", "CVE-2016-8619", "CVE-2017-10685", "CVE-2016-6306", "CVE-2016-2183", "CVE-2016-2178", "CVE-2015-8391", "CVE-2016-6263", "CVE-2016-2108", "CVE-2016-9063", "CVE-2016-8618", "CVE-2016-1762", "CVE-2016-6302", "CVE-2016-5300", "CVE-2015-8395", "CVE-2016-7141", "CVE-2016-1834", "CVE-2017-11112", "CVE-2016-2177", "CVE-2014-7169", "CVE-2015-8382", "CVE-2016-3627", "CVE-2015-1283", "CVE-2014-6277", "CVE-2016-2105", "CVE-2016-9318", "CVE-2016-4483", "CVE-2016-2107", "CVE-2015-8386", "CVE-2014-6278", "CVE-2015-2327", "CVE-2017-9049", "CVE-2016-3075", "CVE-2016-8617", "CVE-2016-9842", "CVE-2016-7796", "CVE-2017-2616", "CVE-2016-0634", "CVE-2012-6702", "CVE-2015-3238", "CVE-2016-2180", "CVE-2016-1835", "CVE-2016-0787", "CVE-2016-1234", "CVE-2016-0718", "CVE-2016-6185", "CVE-2015-8392", "CVE-2016-4574", "CVE-2015-8389", "CVE-2016-2109", "CVE-2015-8380", "CVE-2016-2181", "CVE-2016-6304", "CVE-2016-4449", "CVE-2017-9048", "CVE-2014-8964", "CVE-2015-2059", "CVE-2017-11113", "CVE-2016-1283", "CVE-2016-6313", "CVE-2016-1837", "CVE-2016-6318", "CVE-2015-3622", "CVE-2016-4448", "CVE-2016-1238", "CVE-2015-8393", "CVE-2016-1838", "CVE-2016-3706", "CVE-2016-4429", "CVE-2016-2381", "CVE-2016-7543", "CVE-2017-1000101", "CVE-2016-8622", "CVE-2015-8853", "CVE-2014-7187", "CVE-2015-8394", "CVE-2016-4008", "CVE-2014-9770", "CVE-2015-3217", "CVE-2014-6271", "CVE-2017-7526", "CVE-2016-3191", "CVE-2017-1000366", "CVE-2016-1839", "CVE-2016-8624", "CVE-2015-8384", "CVE-2016-9843", "CVE-2017-9047", "CVE-2015-8948", "CVE-2014-7824", "CVE-2015-8842", "CVE-2016-9597", "CVE-2015-5218", "CVE-2016-6303", "CVE-2015-8383", "CVE-2017-1000100", "CVE-2015-8381", "CVE-2016-2182", "CVE-2016-5421", "CVE-2016-9586", "CVE-2015-5073", "CVE-2016-4447", "CVE-2016-5011", "CVE-2015-7511", "CVE-2015-8385", "CVE-2015-8806", "CVE-2016-9841", "CVE-2016-4579", "CVE-2015-0245", "CVE-2016-2037", "CVE-2016-2073", "CVE-2016-5419", "CVE-2015-2328", "CVE-2017-6507", "CVE-2016-4658", "CVE-2016-7167", "CVE-2017-10684", "CVE-2016-2179", "CVE-2016-2106", "CVE-2016-1833", "CVE-2015-8387", "CVE-2016-8621", "CVE-2015-8390", "CVE-2017-9050"], "modified": "2017-10-11T03:06:53", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html", "id": "SUSE-SU-2017:2699-1", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-11T05:54:20", "references": ["https://bugzilla.suse.com/975726", "https://bugzilla.suse.com/1056193"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.s390x.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.x86_64.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.ppc64le.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "ppc64le", "operator": "lt"}], "description": "The SUSE Linux Enterprise Server 12 SP1 container image has been updated\n to include security and stability fixes.\n\n The following issues related to building of the container images have been\n fixed:\n\n - Included krb5 package to avoid the inclusion of krb5-mini which gets\n selected as a dependency by the Build Service solver. (bsc#1056193)\n - Do not install recommended packages when building container images.\n (bsc#975726)\n\n A number of security issues that have been already fixed by updates\n released for SUSE Linux Enterprise Server 12 SP1 are now included in the\n base image. A package/CVE cross-reference is available below.\n\n pam:\n\n - CVE-2015-3238\n\n libtasn1:\n\n - CVE-2015-3622\n - CVE-2016-4008\n\n expat:\n\n expat:\n\n - CVE-2012-6702\n - CVE-2015-1283\n - CVE-2016-0718\n - CVE-2016-5300\n - CVE-2016-9063\n - CVE-2017-9233\n\n libidn:\n\n - CVE-2015-2059\n - CVE-2015-8948\n - CVE-2016-6261\n - CVE-2016-6262\n - CVE-2016-6263\n\n\n zlib:\n\n - CVE-2016-9840\n - CVE-2016-9841\n - CVE-2016-9842\n - CVE-2016-9843\n\n curl:\n\n - CVE-2016-5419\n - CVE-2016-5420\n - CVE-2016-5421\n - CVE-2016-7141\n - CVE-2016-7167\n - CVE-2016-8615\n - CVE-2016-8616\n - CVE-2016-8617\n - CVE-2016-8618\n - CVE-2016-8619\n - CVE-2016-8620\n - CVE-2016-8621\n - CVE-2016-8622\n - CVE-2016-8623\n - CVE-2016-8624\n - CVE-2016-9586\n - CVE-2017-1000100\n - CVE-2017-1000101\n - CVE-2017-7407\n\n openssl:\n\n - CVE-2016-2105\n - CVE-2016-2106\n - CVE-2016-2107\n - CVE-2016-2108\n - CVE-2016-2109\n - CVE-2016-2177\n - CVE-2016-2178\n - CVE-2016-2179\n - CVE-2016-2180\n - CVE-2016-2181\n - CVE-2016-2182\n - CVE-2016-2183\n - CVE-2016-6302\n - CVE-2016-6303\n - CVE-2016-6304\n - CVE-2016-6306\n - CVE-2016-7056\n - CVE-2016-8610\n - CVE-2017-3731\n\n cracklib:\n\n - CVE-2016-6318\n\n pcre:\n\n - CVE-2014-8964\n - CVE-2015-2325\n - CVE-2015-2327\n - CVE-2015-2328\n - CVE-2015-3210\n - CVE-2015-3217\n - CVE-2015-5073\n - CVE-2015-8380\n - CVE-2015-8381\n - CVE-2015-8382\n - CVE-2015-8383\n - CVE-2015-8384\n - CVE-2015-8385\n - CVE-2015-8386\n - CVE-2015-8387\n - CVE-2015-8388\n - CVE-2015-8389\n - CVE-2015-8390\n - CVE-2015-8391\n - CVE-2015-8392\n - CVE-2015-8393\n - CVE-2015-8394\n - CVE-2015-8395\n - CVE-2016-1283\n - CVE-2016-3191\n\n appamor:\n\n - CVE-2017-6507\n\n bash:\n\n - CVE-2014-6277\n - CVE-2014-6278\n - CVE-2016-0634\n - CVE-2016-7543\n\n cpio:\n\n - CVE-2016-2037\n\n glibc:\n\n - CVE-2016-1234\n - CVE-2016-3075\n - CVE-2016-3706\n - CVE-2016-4429\n - CVE-2017-1000366\n\n perl:\n\n - CVE-2015-8853\n - CVE-2016-1238\n - CVE-2016-2381\n - CVE-2016-6185\n\n libssh2_org:\n\n - CVE-2016-0787\n\n util-linux:\n\n - CVE-2016-5011\n - CVE-2017-2616\n\n ncurses:\n\n - CVE-2017-10684\n - CVE-2017-10685\n - CVE-2017-11112\n - CVE-2017-11113\n\n libksba:\n\n - CVE-2016-4574\n - CVE-2016-4579\n\n libxml2:\n\n - CVE-2014-0191\n - CVE-2015-8806\n - CVE-2016-1762\n - CVE-2016-1833\n - CVE-2016-1834\n - CVE-2016-1835\n - CVE-2016-1837\n - CVE-2016-1838\n - CVE-2016-1839\n - CVE-2016-1840\n - CVE-2016-2073\n - CVE-2016-3627\n - CVE-2016-3705\n - CVE-2016-4447\n - CVE-2016-4448\n - CVE-2016-4449\n - CVE-2016-4483\n - CVE-2016-4658\n - CVE-2016-9318\n - CVE-2016-9597\n - CVE-2017-9047\n - CVE-2017-9048\n - CVE-2017-9049\n - CVE-2017-9050\n\n libgcrypt:\n\n - CVE-2015-7511\n - CVE-2016-6313\n - CVE-2017-7526\n\n update-alternatives:\n\n - CVE-2015-0860\n\n systemd:\n\n - CVE-2014-9770\n - CVE-2015-8842\n - CVE-2016-7796\n\n dbus-1:\n\n - CVE-2014-7824\n - CVE-2015-0245\n\n Finally, the following packages received non-security fixes:\n\n - augeas\n - bzip2\n - ca-certificates-mozilla\n - coreutils\n - cryptsetup\n - cyrus-sasl\n - dirmngr\n - e2fsprogs\n - findutils\n - gpg2\n - insserv-compat\n - kmod\n - libcap\n - libsolv\n - libzypp\n - lua51\n - lvm2\n - netcfg\n - p11-kit\n - permissions\n - procps\n - rpm\n - sed\n - sg3_utils\n - shadow\n - zypper\n\n", "edition": 1, "reporter": "Suse", "published": "2017-10-11T03:07:32", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Security update for SLES 12-SP1 Docker image (important)", "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2016-6262", "CVE-2016-7056", "CVE-2017-7407", "CVE-2015-8388", "CVE-2016-8620", "CVE-2016-8623", "CVE-2017-9233", "CVE-2016-5420", "CVE-2016-9840", "CVE-2016-3705", "CVE-2016-1840", "CVE-2014-0191", "CVE-2016-8615", "CVE-2016-8616", "CVE-2015-5276", "CVE-2015-3210", "CVE-2015-2325", "CVE-2016-6261", "CVE-2016-8619", "CVE-2017-10685", "CVE-2016-6306", "CVE-2016-2183", "CVE-2015-0860", "CVE-2016-2178", "CVE-2015-8391", "CVE-2016-6263", "CVE-2016-2108", "CVE-2016-9063", "CVE-2016-8618", "CVE-2016-1762", "CVE-2016-6302", "CVE-2016-5300", "CVE-2015-8395", "CVE-2016-7141", "CVE-2016-1834", "CVE-2017-11112", "CVE-2016-2177", "CVE-2014-7169", "CVE-2015-8382", "CVE-2016-3627", "CVE-2015-1283", "CVE-2014-6277", "CVE-2016-2105", "CVE-2016-9318", "CVE-2016-4483", "CVE-2016-2107", "CVE-2017-3731", "CVE-2015-8386", "CVE-2014-6278", "CVE-2015-2327", "CVE-2017-9049", "CVE-2016-3075", "CVE-2016-8617", "CVE-2016-9842", "CVE-2016-7796", "CVE-2017-2616", "CVE-2016-0634", "CVE-2012-6702", "CVE-2015-3238", "CVE-2016-2180", "CVE-2016-1835", "CVE-2016-0787", "CVE-2016-8610", "CVE-2016-1234", "CVE-2016-0718", "CVE-2016-6185", "CVE-2015-8392", "CVE-2016-4574", "CVE-2015-8389", "CVE-2016-2109", "CVE-2015-8380", "CVE-2016-2181", "CVE-2016-6304", "CVE-2016-4449", "CVE-2017-9048", "CVE-2014-8964", "CVE-2015-2059", "CVE-2017-11113", "CVE-2016-1283", "CVE-2016-6313", "CVE-2016-1837", "CVE-2016-6318", "CVE-2015-3622", "CVE-2016-4448", "CVE-2016-1238", "CVE-2015-8393", "CVE-2016-1838", "CVE-2016-3706", "CVE-2016-4429", "CVE-2016-2381", "CVE-2016-7543", "CVE-2017-1000101", "CVE-2016-8622", "CVE-2015-8853", "CVE-2014-7187", "CVE-2015-8394", "CVE-2016-4008", "CVE-2014-9770", "CVE-2015-3217", "CVE-2014-6271", "CVE-2017-7526", "CVE-2016-3191", "CVE-2017-1000366", "CVE-2016-1839", "CVE-2016-8624", "CVE-2015-8384", "CVE-2016-9843", "CVE-2017-9047", "CVE-2015-8948", "CVE-2014-7824", "CVE-2015-8842", "CVE-2016-9597", "CVE-2016-6303", "CVE-2015-8383", "CVE-2017-1000100", "CVE-2015-8381", "CVE-2016-2182", "CVE-2016-5421", "CVE-2016-9586", "CVE-2015-5073", "CVE-2016-4447", "CVE-2016-5011", "CVE-2015-7511", "CVE-2015-8385", "CVE-2015-8806", "CVE-2016-9841", "CVE-2016-4579", "CVE-2015-0245", "CVE-2016-2037", "CVE-2016-2073", "CVE-2016-5419", "CVE-2015-2328", "CVE-2017-6507", "CVE-2016-4658", "CVE-2016-7167", "CVE-2017-10684", "CVE-2016-2179", "CVE-2016-2106", "CVE-2016-1833", "CVE-2015-8387", "CVE-2016-8621", "CVE-2015-8390", "CVE-2017-9050"], "modified": "2017-10-11T03:07:32", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html", "id": "SUSE-SU-2017:2700-1", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2018-10-18T13:50:14", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "45.5.1esr-1~deb7u1", "arch": "all", "packageFilename": "firefox-esr_45.5.1esr-1~deb7u1_all.deb", "packageName": "firefox-esr", "operator": "lt"}], "description": "Package : firefox-esr\nVersion : 45.5.1esr-1~deb7u1\nCVE ID : CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297\n CVE-2016-9064 CVE-2016-9066\n\nMultiple security issues have been found in the Mozilla Firefox web\nbrowser: Multiple memory safety errors, buffer overflows and other\nimplementation errors may lead to the execution of arbitrary code or\nbypass of the same-origin policy.\n\nA man-in-the-middle attack in the addon update mechanism has been fixed.\n\nA use-after-free vulnerability in the SVG Animation was discovered,\nallowing a remote attacker to cause a denial of service (application\ncrash) or execute arbitrary code, if a user is tricked into opening a\nspecially crafted website.\n\nFor Debian 7 "Wheezy", these problems have been fixed in version\n45.5.1esr-1~deb7u1.\n\nWe recommend that you upgrade your firefox-esr packages.\n\nFurther information about Debian LTS security advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://wiki.debian.org/LTS\n", "edition": 2, "reporter": "Debian", "published": "2016-12-01T21:45:31", "title": "[SECURITY] [DLA 730-1] firefox-esr security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-18T13:50:14", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2016-12-01T21:45:31", "id": "DEBIAN:DLA-730-1:11C56", "href": "https://lists.debian.org/debian-lts-announce/2016/debian-lts-announce-201612/msg00000.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-08T01:49:09", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ar_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-fr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-it_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-es-ar_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-de_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-de", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-sr_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-fi_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-en-za_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-en-za", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ru_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-cs_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-hy-am_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-et_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-sk_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-sl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-hy-am_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-uk_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-th_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-th", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-mk_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-mk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ms_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ms", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-zh-tw_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-da_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-hi-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-hi-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-hsb_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-hsb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ar_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ka_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ka", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-as_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-as", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ia_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ia", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-nn-no_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-kn_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-kn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-mr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-mr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-uz_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-uz", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-gd_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-eo_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-eo", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-en-za_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-en-za", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-is_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ja_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-es-cl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-es-cl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-sq_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-nl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ja_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-el_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-si_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-th_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-th", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-cy_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-cy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-sv-se_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-gu-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-gu-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-an_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-an", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-bg_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-dbg_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-hr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-dev_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-fi_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-km_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-km", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-az_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-az", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-or_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-or", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-tr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ast_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ast", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-kk_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-kk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ml_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ml", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-id_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-lij_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-lij", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-te_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-te", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-my_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-my", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ko_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ms_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ms", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ka_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ka", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-all_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-all", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-te_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-te", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-nl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-de_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-de", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-cak_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-cak", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-cy_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-cy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-af_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-af", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-lv_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-lv", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ko_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-kab_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-kab", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-tr_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ta_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ta", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-bn-bd_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-kab_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-kab", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-gl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-gd_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ga-ie_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-dev_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-fy-nl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-he_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-cs_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ia_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ia", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ml_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ml", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ach_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ach", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-hu_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-or_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-or", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-nb-no_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-pa-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-zh-cn_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ur_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ur", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-my_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-my", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ca_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-km_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-km", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-el_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-it_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-lt_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-oc_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-oc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-mk_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-mk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-si_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-sl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ta_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ta", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-bn-bd_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ff_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ff", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-fr_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-sr_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-rm_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ro_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-oc_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-oc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-fa_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-fa", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-vi_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-es-mx_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-es-mx", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-all_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-all", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-mr_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-mr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-gn_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-gn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-bs_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-bs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-pl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-rm_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ne-np_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ne-np", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-sv-se_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-is_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-br_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-en-gb_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-kk_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-kk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-pt-br_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-uz_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-uz", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-es-es_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-es-es", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-hsb_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-hsb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-bs_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-bs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ach_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ach", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-fy-nl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-en-gb_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-an_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-an", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-lt_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-pt-pt_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-pt-pt_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-as_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-as", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ca_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-bn-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-bn-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-mai_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-mai", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-xh_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-xh", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-id_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-bn-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-bn-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-es-cl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-es-cl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-da_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-dbg_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-bg_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-et_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-cak_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-cak", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-es-mx_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-es-mx", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-eo_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-eo", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-nb-no_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-son_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-son", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-pt-br_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-sk_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-gn_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-gn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ast_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ast", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-be_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-eu_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-son_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-son", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-hi-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-hi-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-az_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-az", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-fa_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-fa", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ga-ie_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ro_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-be_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-es-ar_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-zh-tw_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-sq_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-vi_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-hr_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-dsb_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-dsb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ru_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-xh_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-xh", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-he_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-dsb_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-dsb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-pl_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ff_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ff", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-kn_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-kn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-lv_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-lv", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-uk_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-lij_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-lij", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-zh-cn_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-eu_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-hu_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-af_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-af", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-ur_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-ur", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-br_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-gl_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-nn-no_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-ne-np_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-ne-np", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-gu-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-gu-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-pa-in_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "iceweasel-l10n-mai_45.5.0esr-1~deb8u1_all.deb", "packageName": "iceweasel-l10n-mai", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "45.5.0esr-1~deb8u1", "arch": "all", "packageFilename": "firefox-esr-l10n-es-es_45.5.0esr-1~deb8u1_all.deb", "packageName": "firefox-esr-l10n-es-es", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3716-1 security@debian.org\nhttps://www.debian.org/security/ Moritz Muehlenhoff\nNovember 16, 2016 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : firefox-esr\nCVE ID : CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297 \n CVE-2016-9064 CVE-2016-9066 CVE-2016-9074\n\nMultiple security issues have been found in the Mozilla Firefox web\nbrowser: Multiple memory safety errors, buffer overflows and other\nimplementation errors may lead to the execution of arbitrary code or\nbypass of the same-origin policy. Also, a man-in-the-middle attack in\nthe addon update mechanism has been fixed.\n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 45.5.0esr-1~deb8u1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 45.5.0esr-1 and version 50.0-1 of the firefox source package.\n\nWe recommend that you upgrade your firefox-esr packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 2, "reporter": "Debian", "published": "2016-11-16T21:28:37", "title": "[SECURITY] [DSA 3716-1] firefox-esr security update", "type": "debian", "enchantments": {"score": {"modified": "2018-11-08T01:49:09", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066"], "modified": "2016-11-16T21:28:37", "id": "DEBIAN:DSA-3716-1:B4B8D", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2016/msg00299.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:41", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ta-lk_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ta-lk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-nb-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-pl_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-da_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ta-lk_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ta-lk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-fr_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ca_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-hu_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-sq_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ga-ie_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-zh-cn_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-hy-am_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ja_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-he_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-uk_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ast_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ast", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-es-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-nn-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-sv-se_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-nb-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-sr_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-pa-in_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-pa-in_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-zh-tw_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-is_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-de_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-de", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-sv-se_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-es-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-dbg_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-es-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ga-ie_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-sl_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-rm_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-hr_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ru_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-el_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-tr_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-sv-se_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-fr_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-he_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-dev_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-lt_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-gd_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ca_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ta-lk_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ta-lk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-eu_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-eu_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-sr_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-fy-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-fy-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-sl_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-sq_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-lt_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-lt_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-fr_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-sk_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-bn-bd_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ca_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-sq_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-pa-in_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-rm_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-en-gb_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-bn-bd_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-fy-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-vi_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-nn-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ro_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-dbg_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-nn-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-si_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-en-gb_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-gd_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-id_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-it_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ko_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-sq_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-sq", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-bg_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-lt_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-lt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ja_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-es-es_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-es-es", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-extension_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-extension", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-et_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-de_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-de", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-gl_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-cy_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-cy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-uk_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-es-es_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-es-es", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-id_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-pt-pt_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-pt-pt_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-pt-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-en-gb_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-gd_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-hy-am_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-it_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-gl_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-bg_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-pt-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ca_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ca", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-tr_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-bg_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-id_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-sk_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-es-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-es-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-zh-cn_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-dev_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ast_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ast", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-tr_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ja_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-sk_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-eu_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-gd_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-zh-cn_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-fi_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-si_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-fi_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "calendar-google-provider_1:45.5.1-1~deb8u1_all.deb", "packageName": "calendar-google-provider", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-all_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-all", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-fi_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-pt-pt_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-be_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-bg_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-bg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-hu_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-nb-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-pl_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-el_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-es-es_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-es-es", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-pl_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-hy-am_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-et_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-et_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-pt-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-pa-in_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-pa-in", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-fy-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-fy-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ro_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-hr_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-hr_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-hy-am_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-hy-am", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-si_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ru_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-si_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-si", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-pt-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-pt-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-he_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-bn-bd_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-et_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-et", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-all_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-all", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-sv-se_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-sv-se", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ko_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ro_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-be_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-cs_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-zh-tw_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-uk_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-he_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-he", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-is_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-nn-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-nn-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-pl_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-pl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-hr_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-hr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-cy_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-cy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-hu_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-de_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-de", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-sl_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-zh-tw_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-is_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-da_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-zh-cn_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-zh-cn", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-en-gb_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-en-gb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-be_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-vi_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ga-ie_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ga-ie_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ga-ie", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-it_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-nb-no_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-nb-no", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-uk_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-uk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-cs_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-sl_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-sl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-da_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-el_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ta-lk_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ta-lk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-it_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-it", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-bn-bd_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-bn-bd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ru_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-es-es_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-es-es", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-be_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-be", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-ja_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-ja", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-cs_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-zh-tw_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-zh-tw", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-gl_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-hu_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-hu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-ko_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-sk_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-sk", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-id_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-id", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-rm_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-tr_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-tr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ar_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ar", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ko_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ko", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-ru_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-ru", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-ro_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-ro", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-fr_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-fr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-pt-pt_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-pt-pt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-eu_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-eu", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-el_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-el", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-rm_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-rm", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-vi_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-br_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-br", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-sr_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-fi_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-fi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-da_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-da", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-nl_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-nl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "icedove-l10n-is_1:45.5.1-1~deb8u1_all.deb", "packageName": "icedove-l10n-is", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-cs_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-cs", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-gl_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-gl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "iceowl-l10n-sr_1:45.5.1-1~deb8u1_all.deb", "packageName": "iceowl-l10n-sr", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "thunderbird-l10n-vi_1:45.5.1-1~deb8u1_all.deb", "packageName": "thunderbird-l10n-vi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "1:45.5.1-1~deb8u1", "arch": "all", "packageFilename": "lightning-l10n-de_1:45.5.1-1~deb8u1_all.deb", "packageName": "lightning-l10n-de", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3730-1 security@debian.org\nhttps://www.debian.org/security/ Salvatore Bonaccorso\nDecember 11, 2016 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : icedove\nCVE ID : CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297\n CVE-2016-9066 CVE-2016-9074 CVE-2016-9079\n\nMultiple security issues have been found in Icedove, Debian's version of\nthe Mozilla Thunderbird mail client: Multiple memory safety errors,\nsame-origin policy bypass issues, integer overflows, buffer overflows\nand use-after-frees may lead to the execution of arbitrary code or\ndenial of service.\n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 1:45.5.1-1~deb8u1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1:45.5.1-1 or earlier.\n\nWe recommend that you upgrade your icedove packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2016-12-11T16:05:59", "title": "[SECURITY] [DSA 3730-1] icedove security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:41", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066"], "modified": "2016-12-11T16:05:59", "id": "DEBIAN:DSA-3730-1:A6927", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2016/msg00313.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:36", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "1:45.5.1-1~deb7u1", "arch": "all", "packageFilename": "icedove_1:45.5.1-1~deb7u1_all.deb", "packageName": "icedove", "operator": "lt"}], "description": "Package : icedove\nVersion : 45.5.1-1~deb7u1\nCVE ID : CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297 \n CVE-2016-9066 CVE-2016-9074 CVE-2016-9079\n\nMultiple security issues have been found in Icedove, Debian's version of\nthe Mozilla Thunderbird mail client: Multiple memory safety errors,\nsame-origin policy bypass issues, integer overflows, buffer overflows\nand use-after-frees may lead to the execution of arbitrary code or\ndenial of service.\n\nFor Debian 7 "Wheezy", these problems have been fixed in version\n45.5.1-1~deb7u1.\n\nWe recommend that you upgrade your icedove packages.\n\nFurther information about Debian LTS security advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://wiki.debian.org/LTS\n", "edition": 1, "reporter": "Debian", "published": "2016-12-17T20:20:32", "title": "[SECURITY] [DLA 752-1] icedove security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:36", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-5296", "CVE-2016-9079", "CVE-2016-5291", "CVE-2016-9074", "CVE-2016-9066"], "modified": "2016-12-17T20:20:32", "id": "DEBIAN:DLA-752-1:F9780", "href": "https://lists.debian.org/debian-lts-announce/2016/debian-lts-announce-201612/msg00027.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:57", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "libexpat1-udeb_2.2.0-2+deb9u1_all.deb", "packageName": "libexpat1-udeb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "lib64expat1_2.2.0-2+deb9u1_all.deb", "packageName": "lib64expat1", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "expat_2.1.0-6+deb8u4_all.deb", "packageName": "expat", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "libexpat1_2.1.0-6+deb8u4_all.deb", "packageName": "libexpat1", "operator": "lt"}, {"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "lib64expat1-dev_2.2.0-2+deb9u1_all.deb", "packageName": "lib64expat1-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "expat_2.2.0-2+deb9u1_all.deb", "packageName": "expat", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "libexpat1-dev_2.1.0-6+deb8u4_all.deb", "packageName": "libexpat1-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "libexpat1-dev_2.2.0-2+deb9u1_all.deb", "packageName": "libexpat1-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "libexpat1-udeb_2.1.0-6+deb8u4_all.deb", "packageName": "libexpat1-udeb", "operator": "lt"}, {"OS": "Debian", "OSVersion": "9", "packageVersion": "2.2.0-2+deb9u1", "arch": "all", "packageFilename": "libexpat1_2.2.0-2+deb9u1_all.deb", "packageName": "libexpat1", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "lib64expat1-dev_2.1.0-6+deb8u4_all.deb", "packageName": "lib64expat1-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "2.1.0-6+deb8u4", "arch": "all", "packageFilename": "lib64expat1_2.1.0-6+deb8u4_all.deb", "packageName": "lib64expat1", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3898-1 security@debian.org\nhttps://www.debian.org/security/ Salvatore Bonaccorso\nJune 25, 2017 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : expat\nCVE ID : CVE-2016-9063 CVE-2017-9233\n\nMultiple vulnerabilities have been discovered in Expat, an XML parsing C\nlibrary. The Common Vulnerabilities and Exposures project identifies the\nfollowing problems:\n\n\nCVE-2016-9063\n\n Gustavo Grieco discovered an integer overflow flaw during parsing of\n XML. An attacker can take advantage of this flaw to cause a denial\n of service against an application using the Expat library.\n\nCVE-2017-9233\n\n Rhodri James discovered an infinite loop vulnerability within the\n entityValueInitProcessor() function while parsing malformed XML\n in an external entity. An attacker can take advantage of this\n flaw to cause a denial of service against an application using\n the Expat library.\n\nFor the oldstable distribution (jessie), these problems have been fixed\nin version 2.1.0-6+deb8u4.\n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 2.2.0-2+deb9u1. For the stable distribution (stretch),\nCVE-2016-9063 was already fixed before the initial release.\n\nFor the testing distribution (buster), these problems have been fixed\nin version 2.2.1-1 or earlier version.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 2.2.1-1 or earlier version.\n\nWe recommend that you upgrade your expat packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2017-06-25T13:33:15", "title": "[SECURITY] [DSA 3898-1] expat security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:57", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9233", "CVE-2016-9063"], "modified": "2017-06-25T13:33:15", "id": "DEBIAN:DSA-3898-1:E830B", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2017/msg00158.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:49:16", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "src", "packageFilename": "firefox-45.5.0-1.0.1.el5_11.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "src", "packageFilename": "firefox-45.5.0-1.0.1.el5_11.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "45.5.0-1.0.1.el7_3", "arch": "src", "packageFilename": "firefox-45.5.0-1.0.1.el7_3.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "i386", "packageFilename": "firefox-45.5.0-1.0.1.el5_11.i386.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "i386", "packageFilename": "firefox-45.5.0-1.0.1.el5_11.i386.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "x86_64", "packageFilename": "firefox-45.5.0-1.0.1.el5_11.x86_64.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "i686", "packageFilename": "firefox-45.5.0-1.0.1.el6_8.i686.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "i686", "packageFilename": "firefox-45.5.0-1.0.1.el6_8.i686.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "45.5.0-1.0.1.el7_3", "arch": "x86_64", "packageFilename": "firefox-45.5.0-1.0.1.el7_3.x86_64.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "src", "packageFilename": "firefox-45.5.0-1.0.1.el6_8.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "src", "packageFilename": "firefox-45.5.0-1.0.1.el6_8.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "45.5.0-1.0.1.el7_3", "arch": "i686", "packageFilename": "firefox-45.5.0-1.0.1.el7_3.i686.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "x86_64", "packageFilename": "firefox-45.5.0-1.0.1.el6_8.x86_64.rpm", "packageName": "firefox", "operator": "lt"}], "description": "[45.5.0-1.0.1]\n- Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html\n and remove the corresponding Red Hat files\n[45.5.0-1]\n- Update to 45.5.0 ESR\n[45.4.0-3]\n- Added upcoming upstream patches mozbz#1018486\n[45.4.0-2]\n- Added Laszlo Ersek patch for aarch64 crashes", "edition": 4, "reporter": "Oracle", "published": "2016-11-16T00:00:00", "title": "firefox security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2016-11-16T00:00:00", "id": "ELSA-2016-2780", "href": "http://linux.oracle.com/errata/ELSA-2016-2780.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:46:06", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "45.5.0-1.0.1.el7_3", "arch": "src", "packageFilename": "thunderbird-45.5.0-1.0.1.el7_3.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "src", "packageFilename": "thunderbird-45.5.0-1.0.1.el6_8.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "src", "packageFilename": "thunderbird-45.5.0-1.0.1.el6_8.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "i386", "packageFilename": "thunderbird-45.5.0-1.0.1.el5_11.i386.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "src", "packageFilename": "thunderbird-45.5.0-1.0.1.el5_11.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "src", "packageFilename": "thunderbird-45.5.0-1.0.1.el5_11.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "i686", "packageFilename": "thunderbird-45.5.0-1.0.1.el6_8.i686.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "45.5.0-1.0.1.el7_3", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.0.1.el7_3.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "45.5.0-1.0.1.el6_8", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.0.1.el6_8.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "45.5.0-1.0.1.el5_11", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.0.1.el5_11.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}], "description": "[45.5.0-1.0.1]\n- Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js\n[45.5.0-1]\n- Update to 45.5.0", "edition": 4, "reporter": "Oracle", "published": "2016-11-29T00:00:00", "title": "thunderbird security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290"], "modified": "2016-11-29T00:00:00", "id": "ELSA-2016-2825", "href": "http://linux.oracle.com/errata/ELSA-2016-2825.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-12-11T19:41:10", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "45.5.0-1.el5_11", "arch": "i386", "packageName": "firefox", "packageFilename": "firefox-45.5.0-1.el5_11.i386.rpm", "operator": "lt"}], "description": "Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or, potentially,\nexecute arbitrary code with the privileges of the user running Firefox.\n(CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox. A\nMan-in-the-Middle attacker could use this flaw to install a malicious signed\nadd-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou,\nOlli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru\nFujisawa, Philipp, and Randell Jesup as the original reporters.\n", "reporter": "RedHat", "published": "2016-11-16T05:00:00", "type": "redhat", "title": "(RHSA-2016:2780) Critical: firefox security update", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5291", "CVE-2016-5296", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-9066"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:15", "id": "RHSA-2016:2780", "href": "https://access.redhat.com/errata/RHSA-2016:2780", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T19:42:32", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "45.5.0-1.el5_11", "arch": "i386", "packageName": "thunderbird", "packageFilename": "thunderbird-45.5.0-1.el5_11.i386.rpm", "operator": "lt"}], "description": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 45.5.0\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Thunderbird to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nThunderbird. (CVE-2016-5290)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Olli Pettay, Christian Holler, Ehsan Akhgari, Jon\nCoppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original\nreporters.\n", "reporter": "RedHat", "published": "2016-11-29T05:00:00", "type": "redhat", "title": "(RHSA-2016:2825) Important: thunderbird security update", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:19", "id": "RHSA-2016:2825", "href": "https://access.redhat.com/errata/RHSA-2016:2825", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "centos": [{"lastseen": "2018-07-31T11:55:42", "references": ["https://rhn.redhat.com/errata/RHSA-2016-2780.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "x86_64", "packageFilename": "firefox-45.5.0-1.el5.centos.x86_64.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "any", "packageFilename": "firefox-45.5.0-1.el5.centos.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "x86_64", "packageFilename": "firefox-45.5.0-1.el6.centos.x86_64.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "i686", "packageFilename": "firefox-45.5.0-1.el6.centos.i686.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "i686", "packageFilename": "firefox-45.5.0-1.el6.centos.i686.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "any", "packageFilename": "firefox-45.5.0-1.el6.centos.src.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "i386", "packageFilename": "firefox-45.5.0-1.el5.centos.i386.rpm", "packageName": "firefox", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "i386", "packageFilename": "firefox-45.5.0-1.el5.centos.i386.rpm", "packageName": "firefox", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2016:2780\n\n\nMozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 45.5.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or, potentially,\nexecute arbitrary code with the privileges of the user running Firefox.\n(CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)\n\n* A flaw was found in the way Add-on update process was handled by Firefox. A\nMan-in-the-Middle attacker could use this flaw to install a malicious signed\nadd-on update. (CVE-2016-9064)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou,\nOlli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru\nFujisawa, Philipp, and Randell Jesup as the original reporters.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2016-November/022156.html\nhttp://lists.centos.org/pipermail/centos-announce/2016-November/022157.html\n\n**Affected packages:**\nfirefox\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2016-2780.html", "edition": 2, "reporter": "CentOS Project", "published": "2016-11-19T11:43:55", "title": "firefox security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-5296", "CVE-2016-5291", "CVE-2016-9066"], "modified": "2016-11-19T12:43:11", "id": "CESA-2016:2780", "href": "http://lists.centos.org/pipermail/centos-announce/2016-November/022156.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-07-31T11:56:29", "references": ["https://rhn.redhat.com/errata/RHSA-2016-2825.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.el6.centos.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "i386", "packageFilename": "thunderbird-45.5.0-1.el5.centos.i386.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.el5.centos.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "7", "packageVersion": "45.5.0-1.el7.centos", "arch": "x86_64", "packageFilename": "thunderbird-45.5.0-1.el7.centos.x86_64.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "45.5.0-1.el5.centos", "arch": "any", "packageFilename": "thunderbird-45.5.0-1.el5.centos.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "any", "packageFilename": "thunderbird-45.5.0-1.el6.centos.src.rpm", "packageName": "thunderbird", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "45.5.0-1.el6.centos", "arch": "i686", "packageFilename": "thunderbird-45.5.0-1.el6.centos.i686.rpm", "packageName": "thunderbird", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2016:2825\n\n\nMozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 45.5.0\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Thunderbird to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nThunderbird. (CVE-2016-5290)\n\nRed Hat would like to thank the Mozilla project for reporting these issues.\nUpstream acknowledges Olli Pettay, Christian Holler, Ehsan Akhgari, Jon\nCoppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original\nreporters.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2016-December/022163.html\nhttp://lists.centos.org/pipermail/centos-announce/2016-December/022165.html\nhttp://lists.centos.org/pipermail/centos-cr-announce/2016-December/003691.html\n\n**Affected packages:**\nthunderbird\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2016-2825.html", "edition": 6, "reporter": "CentOS Project", "published": "2016-12-01T15:29:44", "title": "thunderbird security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290"], "modified": "2016-12-01T15:43:25", "id": "CESA-2016:2825", "href": "http://lists.centos.org/pipermail/centos-announce/2016-December/022163.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:14:08", "references": ["https://www.mozilla.org/security/advisories/mfsa2016-90/", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "45.5.0,1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox-esr", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "45.5.0", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "thunderbird", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "45.5.0,2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-firefox", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "50.0_1,1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "firefox", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.47", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "seamonkey", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "45.5.0", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libxul", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "45.5.0", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-thunderbird", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.47", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-seamonkey", "operator": "lt"}], "description": "\nMozilla Foundation reports:\n\nPlease reference CVE/URL list for details\n\n", "edition": 5, "reporter": "FreeBSD", "published": "2016-11-15T00:00:00", "title": "mozilla -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9065", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-5299", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5295", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-5298", "CVE-2016-9061", "CVE-2016-9072", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-5293", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076", "CVE-2016-9062"], "modified": "2016-11-15T00:00:00", "id": "D1853110-07F4-4645-895B-6FD462AD0589", "href": "https://vuxml.freebsd.org/freebsd/d1853110-07f4-4645-895b-6fd462ad0589.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:13:40", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9233", "https://libexpat.github.io/doc/cve-2017-9233/", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.2.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "expat", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.4.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libwww", "operator": "lt"}], "description": "\nMitre reports:\n\nAn integer overflow during the parsing of XML using the Expat library.\n\n\nXML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat\n\t XML Parser Library) allows attackers to put the parser in an infinite\n\t loop using a malformed external entity definition from an external DTD.\n\n", "edition": 5, "reporter": "FreeBSD", "published": "2016-10-27T00:00:00", "title": "expat -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"modified": "2018-08-31T01:13:40", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9233", "CVE-2016-9063"], "modified": "2016-10-27T00:00:00", "id": "E375FF3F-7FEC-11E8-8088-28D244AEE256", "href": "https://vuxml.freebsd.org/freebsd/e375ff3f-7fec-11e8-8088-28d244aee256.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:13:51", "references": ["https://raw.githubusercontent.com/python/cpython/84471935ed2f62b8c5758fd544c7d37076fe0fa5/Misc/NEWS"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.7.14", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "python27", "operator": "lt"}], "description": "\nPython reports:\n\nMultiple vulnerabilities have been fixed in Python 2.7.14. Please refer to the CVE list for details.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2017-08-26T00:00:00", "title": "Python 2.7 -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9233", "CVE-2016-9063", "CVE-2016-5300", "CVE-2012-0876", "CVE-2016-0718", "CVE-2016-4472"], "modified": "2017-08-26T00:00:00", "id": "9164F51E-AE20-11E7-A633-009C02A2AB30", "href": "https://vuxml.freebsd.org/freebsd/9164f51e-ae20-11e7-a633-009c02a2ab30.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:13:41", "references": ["https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.15.rst", "https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.15rc1.rst"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.7.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "python27", "operator": "lt"}], "description": "\npython release notes:\n\nMultiple vulnerabilities has been fixed in this release. Please refer to the CVE list for details.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2018-05-01T00:00:00", "title": "python 2.7 -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"modified": "2018-08-31T01:13:41", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9233", "CVE-2016-9063", "CVE-2018-1060", "CVE-2012-0876", "CVE-2016-0718", "CVE-2018-1061", "CVE-2016-4472"], "modified": "2018-05-01T00:00:00", "id": "8719B935-8BAE-41AD-92BA-3C826F651219", "href": "https://vuxml.freebsd.org/freebsd/8719b935-8bae-41ad-92ba-3c826f651219.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "kaspersky": [{"lastseen": "2018-12-06T13:24:02", "references": [], "description": "### *CVSS*:\n7.5\n\n### *Detect date*:\n11/15/2016\n\n### *Severity*:\nHigh\n\n### *Description*:\nMultiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information and spoof user interface.\n\n### *Affected products*:\nMozilla Firefox earlier than 50\n\n### *Solution*:\nUpdate to the latest version \n[Download Mozilla Firefox](<https://www.mozilla.org/en-US/firefox/new/>)\n\n### *Original advisories*:\n[Mozilla Foundation Security Advisory 2016-89](<https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/>) \n\n\n### *Impacts*:\nOSI \n\n### *Related products*:\n[Mozilla Firefox](<https://threats.kaspersky.com/en/product/Mozilla-Firefox/>)\n\n### *CVE-IDS*:\n[CVE-2016-5289](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5289>) \n[CVE-2016-5290](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5290>) \n[CVE-2016-5291](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5291>) \n[CVE-2016-5292](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5292>) \n[CVE-2016-5293](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5293>) \n[CVE-2016-5294](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5294>) \n[CVE-2016-5295](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5295>) \n[CVE-2016-5296](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5296>) \n[CVE-2016-5297](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5297>) \n[CVE-2016-9063](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063>) \n[CVE-2016-9064](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9064>) \n[CVE-2016-9066](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9066>) \n[CVE-2016-9067](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9067>) \n[CVE-2016-9068](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9068>) \n[CVE-2016-9070](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9070>) \n[CVE-2016-9071](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9071>) \n[CVE-2016-9072](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9072>) \n[CVE-2016-9073](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9073>) \n[CVE-2016-9074](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9074>) \n[CVE-2016-9075](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9075>) \n[CVE-2016-9076](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9076>) \n[CVE-2016-9077](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9077>) \n[CVE-2016-9069](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9069>)", "edition": 22, "reporter": "Kaspersky Lab", "published": "2016-11-15T00:00:00", "title": "\r KLA11272Multiple vulnerabilities in Mozilla Firefox ", "type": "kaspersky", "enchantments": {"score": {"modified": "2018-12-06T13:24:02", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "info", "cvelist": ["CVE-2016-5290", "CVE-2016-9070", "CVE-2016-5297", "CVE-2016-9075", "CVE-2016-9068", "CVE-2016-5292", "CVE-2016-9063", "CVE-2016-9064", "CVE-2016-9071", "CVE-2016-5296", "CVE-2016-5289", "CVE-2016-5295", "CVE-2016-5291", "CVE-2016-5294", "CVE-2016-9074", "CVE-2016-9072", "CVE-2016-9077", "CVE-2016-9066", "CVE-2016-5293", "CVE-2016-9069", "CVE-2016-9067", "CVE-2016-9073", "CVE-2016-9076"], "modified": "2018-12-04T00:00:00", "id": "KLA11272", "href": "https://threats.kaspersky.com/en/vulnerability/KLA11272", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cve": [{"lastseen": "2018-12-04T11:53:51", "references": ["http://www.securitytracker.com/id/1037298", "https://bugzilla.mozilla.org/show_bug.cgi?id=1289273", "http://www.securityfocus.com/bid/94337", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "description": "WebExtensions can bypass security checks to load privileged URLs and potentially escape the WebExtension sandbox. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9073", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 9.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9073"], "scanner": [], "modified": "2018-07-30T09:57:05", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9073", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9073", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["http://www.securitytracker.com/id/1037298", "http://www.securityfocus.com/bid/94337", "https://bugzilla.mozilla.org/show_bug.cgi?id=1285003", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "description": "Content Security Policy combined with HTTP to HTTPS redirection can be used by malicious server to verify whether a known site is within a user's browser history. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9071", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9071"], "scanner": [], "modified": "2018-07-30T09:26:34", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9071", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9071", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["http://www.securitytracker.com/id/1037298", "https://bugzilla.mozilla.org/show_bug.cgi?id=1301777", "http://www.securityfocus.com/bid/94337", "https://www.mozilla.org/security/advisories/mfsa2016-89/", "https://bugzilla.mozilla.org/show_bug.cgi?id=1308922"], "description": "Two use-after-free errors during DOM operations resulting in potentially exploitable crashes. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9067", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9067"], "scanner": [], "modified": "2018-07-30T09:56:34", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9067", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9067", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:49", "references": ["http://www.securitytracker.com/id/1037298", "http://www.securityfocus.com/bid/94337", "https://bugzilla.mozilla.org/show_bug.cgi?id=1288482", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "description": "During URL parsing, a maliciously crafted URL can cause a potentially exploitable crash. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:00", "title": "CVE-2016-5292", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:49", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-5292"], "scanner": [], "modified": "2018-07-30T08:43:30", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-5292", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5292", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["http://www.securitytracker.com/id/1037298", "http://www.securityfocus.com/bid/94337", "https://www.mozilla.org/security/advisories/mfsa2016-89/", "https://bugzilla.mozilla.org/show_bug.cgi?id=1302973"], "description": "A use-after-free during web animations when working with timelines resulting in a potentially exploitable crash. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9068", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9068"], "scanner": [], "modified": "2018-07-30T09:26:01", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9068", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9068", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["https://bugzilla.mozilla.org/show_bug.cgi?id=1281071", "http://www.securitytracker.com/id/1037298", "http://www.securityfocus.com/bid/94337", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "description": "A maliciously crafted page loaded to the sidebar through a bookmark can reference a privileged chrome window and engage in limited JavaScript operations violating cross-origin protections. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9070", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 4.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9070"], "scanner": [], "modified": "2018-08-01T09:50:29", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9070", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9070", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["https://www.mozilla.org/security/advisories/mfsa2016-90/", "https://security.gentoo.org/glsa/201701-15", "http://www.securitytracker.com/id/1037298", "https://www.debian.org/security/2016/dsa-3730", "https://www.mozilla.org/security/advisories/mfsa2016-93/", "http://www.securityfocus.com/bid/94336", "https://bugzilla.mozilla.org/show_bug.cgi?id=1299686", "https://www.mozilla.org/security/advisories/mfsa2016-89/", "http://rhn.redhat.com/errata/RHSA-2016-2780.html"], "description": "A buffer overflow resulting in a potentially exploitable crash due to memory allocation issues when handling large amounts of incoming data. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:01", "title": "CVE-2016-9066", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9066"], "scanner": [], "modified": "2018-07-30T09:22:06", "cpe": ["cpe:/a:mozilla:thunderbird:2.0.0.11", "cpe:/a:mozilla:thunderbird:11.0", "cpe:/a:mozilla:thunderbird:24.2.0", "cpe:/a:mozilla:thunderbird:45.1.1", "cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:thunderbird:38.3.0", "cpe:/a:mozilla:thunderbird:1.5.0.10", "cpe:/a:mozilla:thunderbird:3.0.6", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox_esr:38.5.0", "cpe:/a:mozilla:thunderbird:24.6.0", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox_esr:45.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:thunderbird:3.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.3", "cpe:/a:mozilla:firefox_esr:38.0.5", "cpe:/a:mozilla:firefox_esr:38.6.1", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:thunderbird:2.0.0.9", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox_esr:45.4.0", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox_esr:10.0.4", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox_esr:17.0.3", "cpe:/a:mozilla:thunderbird:31.4", "cpe:/a:mozilla:thunderbird:3.1.16", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:thunderbird:31.6.0", "cpe:/a:mozilla:thunderbird:24.1.0", "cpe:/a:mozilla:thunderbird:0.7", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:thunderbird:24.3", "cpe:/a:mozilla:firefox_esr:38.2.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:3.1.11", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:thunderbird:3.0", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:thunderbird:17.0.10", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:thunderbird:10.0.3", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox_esr:38.0.1::~~~~x64~", "cpe:/a:mozilla:firefox_esr:38.7.0", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:thunderbird:1.5:beta2", "cpe:/a:mozilla:thunderbird:-", "cpe:/a:mozilla:thunderbird:17.0.8", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox_esr:38.0.5::~~~~x64~", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:thunderbird:24.5", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:thunderbird:2.0.0.21", "cpe:/a:mozilla:firefox_esr:24.8", "cpe:/a:mozilla:thunderbird:24.1", "cpe:/a:mozilla:thunderbird:7.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:thunderbird:38.7.1", "cpe:/a:mozilla:thunderbird:31.7.0", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:thunderbird:1.0.8", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox_esr:45.3.0", "cpe:/a:mozilla:thunderbird:3.1.6", "cpe:/a:mozilla:firefox_esr:10.0.2", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox_esr:24.2", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:thunderbird:38.7.2", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:thunderbird:3.0.7", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox_esr:38.4.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:thunderbird:38.5.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox_esr:31.6", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox_esr:10.0.5", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:thunderbird:38.0", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:thunderbird:10.0.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:thunderbird:1.0.4", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:thunderbird:2.0.0.22", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:thunderbird:31.4.0", "cpe:/a:mozilla:thunderbird:3.1.19", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:thunderbird:2.0.0.12", "cpe:/a:mozilla:firefox_esr:17.0.4", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:thunderbird:1.5.0.2", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox_esr:38.1.0", "cpe:/a:mozilla:thunderbird:1.7.1", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.9", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:thunderbird:24.5.0", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox_esr:24.1.0", "cpe:/a:mozilla:thunderbird:10.0", "cpe:/a:mozilla:firefox_esr:10.0.3", "cpe:/a:mozilla:firefox_esr:10.0.11", "cpe:/o:debian:debian_linux:8.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox_esr:17.0.10", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox_esr:38.1.1", "cpe:/a:mozilla:thunderbird:1.5.0.4", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:thunderbird:3.0.10", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:thunderbird:3.1", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:thunderbird:15.0.1", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox_esr:31.3.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox_esr:10.0.1", "cpe:/a:mozilla:thunderbird:1.5.0.6", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:thunderbird:31.1.2", "cpe:/a:mozilla:thunderbird:1.0", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:thunderbird:1.0.1", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:thunderbird:31.3", "cpe:/a:mozilla:thunderbird:10.0.1", "cpe:/a:mozilla:firefox_esr:17.0.5", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox_esr:38.1.1::~~~~x64~", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:thunderbird:1.5.2", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:thunderbird:3.1.3", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:thunderbird:1.5.0.1", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox_esr:38.4.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:6.0.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox_esr:10.0.10", "cpe:/a:mozilla:firefox_esr:31.1", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:thunderbird:3.0.3", "cpe:/a:mozilla:thunderbird:0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:thunderbird:24.1.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:thunderbird:2.0.0.23", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:thunderbird:17.0.7", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:thunderbird:0.7.2", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox_esr:31.8", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox_esr:10.0.8", "cpe:/a:mozilla:thunderbird:31.8", "cpe:/a:mozilla:thunderbird:32.0", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:thunderbird:45.3.0", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:thunderbird:2.0.0.19", "cpe:/a:mozilla:thunderbird:3.0.8", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:thunderbird:24.2", "cpe:/a:mozilla:firefox_esr:38.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:0.6", "cpe:/a:mozilla:firefox_esr:10.0.9", "cpe:/a:mozilla:thunderbird:3.1.14", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox_esr:31.5", "cpe:/a:mozilla:thunderbird:38.0.1", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:thunderbird:2.0.0.7", "cpe:/a:mozilla:thunderbird:3.1.1", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:thunderbird:17.0", "cpe:/a:mozilla:firefox_esr:10.0", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:thunderbird:9.0.1", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox_esr:38.6.0", "cpe:/a:mozilla:thunderbird:31.2", "cpe:/a:mozilla:thunderbird:3.1.2", "cpe:/a:mozilla:thunderbird:2.0.0.2", "cpe:/a:mozilla:thunderbird:9.0", "cpe:/a:mozilla:firefox_esr:31.5.2", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:thunderbird:38.7.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox_esr:38.8.0", "cpe:/a:mozilla:thunderbird:1.5.0.13", "cpe:/a:mozilla:thunderbird:7.0.1", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:thunderbird:45.0", "cpe:/a:mozilla:thunderbird:0.8", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox_esr:38.3.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:thunderbird:2.0.0.5", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:thunderbird:11.0.1", "cpe:/a:mozilla:firefox_esr:24.3", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:thunderbird:38.4.0", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox_esr:17.0.2", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:thunderbird:2.0.0.13", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:thunderbird:6.0", "cpe:/a:mozilla:firefox_esr:38.5.2", "cpe:/a:mozilla:thunderbird:16.0.2", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox_esr:17.0.8", "cpe:/a:mozilla:thunderbird:2.0.0.20", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:thunderbird:17.0.2", "cpe:/a:mozilla:thunderbird:24.3.0", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:thunderbird:31.8.0", "cpe:/a:mozilla:firefox_esr:38.5.1", "cpe:/a:mozilla:firefox_esr:31.1.1", "cpe:/a:mozilla:thunderbird:0.7.1", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox_esr:31.3", "cpe:/a:mozilla:thunderbird:10.0.2", "cpe:/a:mozilla:thunderbird:24.0.1", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:thunderbird:1.0.5:beta", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox_esr:38.7.1", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox_esr:38.2.0", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:thunderbird:24.0", "cpe:/a:mozilla:thunderbird:17.0.5", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox_esr:45.2.0", "cpe:/a:mozilla:thunderbird:1.5.0.12", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox_esr:24.6", "cpe:/a:mozilla:thunderbird:8.0", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:thunderbird:38.1.0", "cpe:/a:mozilla:thunderbird:2.0.0.3", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:thunderbird:17.0.4", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:thunderbird:3.1.18", "cpe:/a:mozilla:thunderbird:3.0.4", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:thunderbird:3.1.12", "cpe:/a:mozilla:firefox_esr:10.0.12", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:thunderbird:0.7.3", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:thunderbird:45.4.0", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:thunderbird:1.0.5", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:thunderbird:3.1.17", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox_esr:24.4", "cpe:/a:mozilla:thunderbird:17.0.1", "cpe:/a:mozilla:thunderbird:1.0.6", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.8", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:thunderbird:6.0.1", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:thunderbird:24.8", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:thunderbird:2.0", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:thunderbird:2.0.0.1", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox_esr:17.0.7", "cpe:/a:mozilla:thunderbird:13.0", "cpe:/a:mozilla:thunderbird:1.5.0.14", "cpe:/a:mozilla:thunderbird:17.0.6", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox_esr:45.1.1", "cpe:/a:mozilla:thunderbird:2.0.0.4", "cpe:/a:mozilla:thunderbird:1.5", "cpe:/a:mozilla:firefox_esr:24.7", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox_esr:17.0.9", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox_esr:31.4", "cpe:/a:mozilla:thunderbird:38.8.0", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:thunderbird:3.1.5", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:thunderbird:16.0", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:thunderbird:3.1.13", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox_esr:38.1.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:2.0.0.0", "cpe:/a:mozilla:thunderbird:3.0.5", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox_esr:17.0.11", "cpe:/a:mozilla:firefox_esr:24.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:thunderbird:12.0", "cpe:/a:mozilla:thunderbird:38.1", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:thunderbird:3.1.8", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:thunderbird:38.5.0", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:thunderbird:24.4.0", "cpe:/a:mozilla:thunderbird:38.6.0", "cpe:/a:mozilla:thunderbird:31.1.0", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:thunderbird:3.1.4", "cpe:/a:mozilla:firefox_esr:38.2.1", "cpe:/a:mozilla:firefox_esr:17.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:thunderbird:16.0.1", "cpe:/a:mozilla:thunderbird:2.0.0.17", "cpe:/a:mozilla:thunderbird:1.0.2", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:thunderbird:38.2.0", "cpe:/a:mozilla:thunderbird:5.0", "cpe:/a:mozilla:thunderbird:31.6", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:thunderbird:3.1.10", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:thunderbird:0.5", "cpe:/a:mozilla:firefox_esr:31.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:thunderbird:14.0", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox_esr:38.3.0", "cpe:/a:mozilla:firefox_esr:10.0.6", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:thunderbird:3.0.9", "cpe:/a:mozilla:thunderbird:31.5", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:thunderbird:3.0.1", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:thunderbird:1.5.1", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox_esr:10.0.7", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:thunderbird:3.1.15", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:thunderbird:1.0.7", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:thunderbird:3.0.11", "cpe:/a:mozilla:thunderbird:24.6", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox_esr:38.2.1::~~~~x64~", "cpe:/a:mozilla:thunderbird:3.1.9", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:thunderbird:15.0", "cpe:/a:mozilla:thunderbird:0.2", "cpe:/a:mozilla:thunderbird:1.5.0.5", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:thunderbird:12.0.1", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:thunderbird:45.1.0", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:thunderbird:17.0.3", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox_esr:24.5", "cpe:/a:mozilla:thunderbird:24.7", "cpe:/a:mozilla:thunderbird:2.0.0.16", "cpe:/a:mozilla:thunderbird:2.0.14", "cpe:/a:mozilla:firefox_esr:31.2", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:thunderbird:31.5.0", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:thunderbird:3.1.7", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox_esr:24.0.2", "cpe:/a:mozilla:firefox_esr:31.5.1", "cpe:/a:mozilla:thunderbird:1.5.0.11", "cpe:/a:mozilla:thunderbird:31.2.0", "cpe:/a:mozilla:thunderbird:0.1", "cpe:/a:mozilla:thunderbird:17.0.9", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:thunderbird:2.0.0.14", "cpe:/a:mozilla:thunderbird:45.2.0", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:thunderbird:1.5.0.7", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox_esr:31.5.3", "cpe:/a:mozilla:firefox_esr:38.0.1", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:thunderbird:24.7.0", "cpe:/a:mozilla:thunderbird:31.0", "cpe:/a:mozilla:thunderbird:24.4", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:thunderbird:0.9", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:thunderbird:2.0.0.15", "cpe:/a:mozilla:thunderbird:2.0.0.8", "cpe:/a:mozilla:firefox_esr:24.0.1", "cpe:/a:mozilla:thunderbird:1.7.3", "cpe:/a:mozilla:firefox_esr:17.0.6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:thunderbird:1.0.3", "cpe:/a:mozilla:firefox_esr:17.0.1", "cpe:/a:mozilla:firefox_esr:24.1.1", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox_esr:38.0", "cpe:/a:mozilla:thunderbird:2.0.0.18", "cpe:/a:mozilla:thunderbird:0.3", "cpe:/a:mozilla:thunderbird:2.0.0.6", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox_esr:45.1.0", "cpe:/a:mozilla:firefox_esr:31.1.0", "cpe:/a:mozilla:firefox:21.0", "cpe:/a:mozilla:thunderbird:13.0.1"], "id": "CVE-2016-9066", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9066", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:49", "references": ["https://www.mozilla.org/security/advisories/mfsa2016-90/", "https://security.gentoo.org/glsa/201701-15", "http://www.securitytracker.com/id/1037298", "https://www.debian.org/security/2016/dsa-3730", "https://www.mozilla.org/security/advisories/mfsa2016-93/", "http://www.securityfocus.com/bid/94336", "https://bugzilla.mozilla.org/show_bug.cgi?id=1292159", "https://www.mozilla.org/security/advisories/mfsa2016-89/", "http://rhn.redhat.com/errata/RHSA-2016-2780.html"], "description": "A same-origin policy bypass with local shortcut files to load arbitrary local content from disk. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:00", "title": "CVE-2016-5291", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:49", "vector": "NONE", "value": 7.2}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-5291"], "scanner": [], "modified": "2018-07-30T08:40:18", "cpe": ["cpe:/a:mozilla:thunderbird:2.0.0.11", "cpe:/a:mozilla:thunderbird:11.0", "cpe:/a:mozilla:thunderbird:24.2.0", "cpe:/a:mozilla:thunderbird:45.1.1", "cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:thunderbird:38.3.0", "cpe:/a:mozilla:thunderbird:1.5.0.10", "cpe:/a:mozilla:thunderbird:3.0.6", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox_esr:38.5.0", "cpe:/a:mozilla:thunderbird:24.6.0", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox_esr:45.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:thunderbird:3.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.3", "cpe:/a:mozilla:firefox_esr:38.0.5", "cpe:/a:mozilla:firefox_esr:38.6.1", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:thunderbird:2.0.0.9", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox_esr:45.4.0", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox_esr:10.0.4", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox_esr:17.0.3", "cpe:/a:mozilla:thunderbird:31.4", "cpe:/a:mozilla:thunderbird:3.1.16", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:thunderbird:31.6.0", "cpe:/a:mozilla:thunderbird:24.1.0", "cpe:/a:mozilla:thunderbird:0.7", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:thunderbird:24.3", "cpe:/a:mozilla:firefox_esr:38.2.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:3.1.11", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:thunderbird:3.0", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:thunderbird:17.0.10", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:thunderbird:10.0.3", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox_esr:38.0.1::~~~~x64~", "cpe:/a:mozilla:firefox_esr:38.7.0", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:thunderbird:1.5:beta2", "cpe:/a:mozilla:thunderbird:-", "cpe:/a:mozilla:thunderbird:17.0.8", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox_esr:38.0.5::~~~~x64~", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:thunderbird:24.5", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:thunderbird:2.0.0.21", "cpe:/a:mozilla:firefox_esr:24.8", "cpe:/a:mozilla:thunderbird:24.1", "cpe:/a:mozilla:thunderbird:7.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:thunderbird:38.7.1", "cpe:/a:mozilla:thunderbird:31.7.0", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:thunderbird:1.0.8", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox_esr:45.3.0", "cpe:/a:mozilla:thunderbird:3.1.6", "cpe:/a:mozilla:firefox_esr:10.0.2", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox_esr:24.2", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:thunderbird:38.7.2", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:thunderbird:3.0.7", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox_esr:38.4.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:thunderbird:38.5.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox_esr:31.6", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox_esr:10.0.5", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:thunderbird:38.0", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:thunderbird:10.0.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:thunderbird:1.0.4", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:thunderbird:2.0.0.22", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:thunderbird:31.4.0", "cpe:/a:mozilla:thunderbird:3.1.19", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:thunderbird:2.0.0.12", "cpe:/a:mozilla:firefox_esr:17.0.4", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:thunderbird:1.5.0.2", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox_esr:38.1.0", "cpe:/a:mozilla:thunderbird:1.7.1", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.9", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:thunderbird:24.5.0", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox_esr:24.1.0", "cpe:/a:mozilla:thunderbird:10.0", "cpe:/a:mozilla:firefox_esr:10.0.3", "cpe:/a:mozilla:firefox_esr:10.0.11", "cpe:/o:debian:debian_linux:8.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox_esr:17.0.10", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox_esr:38.1.1", "cpe:/a:mozilla:thunderbird:1.5.0.4", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:thunderbird:3.0.10", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:thunderbird:3.1", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:thunderbird:15.0.1", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox_esr:31.3.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox_esr:10.0.1", "cpe:/a:mozilla:thunderbird:1.5.0.6", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:thunderbird:31.1.2", "cpe:/a:mozilla:thunderbird:1.0", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:thunderbird:1.0.1", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:thunderbird:31.3", "cpe:/a:mozilla:thunderbird:10.0.1", "cpe:/a:mozilla:firefox_esr:17.0.5", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox_esr:38.1.1::~~~~x64~", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:thunderbird:1.5.2", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:thunderbird:3.1.3", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:thunderbird:1.5.0.1", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox_esr:38.4.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:6.0.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox_esr:10.0.10", "cpe:/a:mozilla:firefox_esr:31.1", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:thunderbird:3.0.3", "cpe:/a:mozilla:thunderbird:0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:thunderbird:24.1.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:thunderbird:2.0.0.23", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:thunderbird:17.0.7", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:thunderbird:0.7.2", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox_esr:31.8", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox_esr:10.0.8", "cpe:/a:mozilla:thunderbird:31.8", "cpe:/a:mozilla:thunderbird:32.0", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:thunderbird:45.3.0", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:thunderbird:2.0.0.19", "cpe:/a:mozilla:thunderbird:3.0.8", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:thunderbird:24.2", "cpe:/a:mozilla:firefox_esr:38.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:0.6", "cpe:/a:mozilla:firefox_esr:10.0.9", "cpe:/a:mozilla:thunderbird:3.1.14", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox_esr:31.5", "cpe:/a:mozilla:thunderbird:38.0.1", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:thunderbird:2.0.0.7", "cpe:/a:mozilla:thunderbird:3.1.1", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:thunderbird:17.0", "cpe:/a:mozilla:firefox_esr:10.0", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:thunderbird:9.0.1", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox_esr:38.6.0", "cpe:/a:mozilla:thunderbird:31.2", "cpe:/a:mozilla:thunderbird:3.1.2", "cpe:/a:mozilla:thunderbird:2.0.0.2", "cpe:/a:mozilla:thunderbird:9.0", "cpe:/a:mozilla:firefox_esr:31.5.2", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:thunderbird:38.7.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox_esr:38.8.0", "cpe:/a:mozilla:thunderbird:1.5.0.13", "cpe:/a:mozilla:thunderbird:7.0.1", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:thunderbird:45.0", "cpe:/a:mozilla:thunderbird:0.8", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox_esr:38.3.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:thunderbird:2.0.0.5", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:thunderbird:11.0.1", "cpe:/a:mozilla:firefox_esr:24.3", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:thunderbird:38.4.0", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox_esr:17.0.2", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:thunderbird:2.0.0.13", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:thunderbird:6.0", "cpe:/a:mozilla:firefox_esr:38.5.2", "cpe:/a:mozilla:thunderbird:16.0.2", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox_esr:17.0.8", "cpe:/a:mozilla:thunderbird:2.0.0.20", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:thunderbird:17.0.2", "cpe:/a:mozilla:thunderbird:24.3.0", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:thunderbird:31.8.0", "cpe:/a:mozilla:firefox_esr:38.5.1", "cpe:/a:mozilla:firefox_esr:31.1.1", "cpe:/a:mozilla:thunderbird:0.7.1", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox_esr:31.3", "cpe:/a:mozilla:thunderbird:10.0.2", "cpe:/a:mozilla:thunderbird:24.0.1", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:thunderbird:1.0.5:beta", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox_esr:38.7.1", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox_esr:38.2.0", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:thunderbird:24.0", "cpe:/a:mozilla:thunderbird:17.0.5", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox_esr:45.2.0", "cpe:/a:mozilla:thunderbird:1.5.0.12", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox_esr:24.6", "cpe:/a:mozilla:thunderbird:8.0", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:thunderbird:38.1.0", "cpe:/a:mozilla:thunderbird:2.0.0.3", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:thunderbird:17.0.4", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:thunderbird:3.1.18", "cpe:/a:mozilla:thunderbird:3.0.4", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:thunderbird:3.1.12", "cpe:/a:mozilla:firefox_esr:10.0.12", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:thunderbird:0.7.3", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:thunderbird:45.4.0", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:thunderbird:1.0.5", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:thunderbird:3.1.17", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox_esr:24.4", "cpe:/a:mozilla:thunderbird:17.0.1", "cpe:/a:mozilla:thunderbird:1.0.6", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.8", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:thunderbird:6.0.1", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:thunderbird:24.8", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:thunderbird:2.0", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:thunderbird:2.0.0.1", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox_esr:17.0.7", "cpe:/a:mozilla:thunderbird:13.0", "cpe:/a:mozilla:thunderbird:1.5.0.14", "cpe:/a:mozilla:thunderbird:17.0.6", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox_esr:45.1.1", "cpe:/a:mozilla:thunderbird:2.0.0.4", "cpe:/a:mozilla:thunderbird:1.5", "cpe:/a:mozilla:firefox_esr:24.7", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox_esr:17.0.9", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox_esr:31.4", "cpe:/a:mozilla:thunderbird:38.8.0", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:thunderbird:3.1.5", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:thunderbird:16.0", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:thunderbird:3.1.13", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox_esr:38.1.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:2.0.0.0", "cpe:/a:mozilla:thunderbird:3.0.5", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox_esr:17.0.11", "cpe:/a:mozilla:firefox_esr:24.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:thunderbird:12.0", "cpe:/a:mozilla:thunderbird:38.1", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:thunderbird:3.1.8", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:thunderbird:38.5.0", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:thunderbird:24.4.0", "cpe:/a:mozilla:thunderbird:38.6.0", "cpe:/a:mozilla:thunderbird:31.1.0", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:thunderbird:3.1.4", "cpe:/a:mozilla:firefox_esr:38.2.1", "cpe:/a:mozilla:firefox_esr:17.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:thunderbird:16.0.1", "cpe:/a:mozilla:thunderbird:2.0.0.17", "cpe:/a:mozilla:thunderbird:1.0.2", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:thunderbird:38.2.0", "cpe:/a:mozilla:thunderbird:5.0", "cpe:/a:mozilla:thunderbird:31.6", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:thunderbird:3.1.10", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:thunderbird:0.5", "cpe:/a:mozilla:firefox_esr:31.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:thunderbird:14.0", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox_esr:38.3.0", "cpe:/a:mozilla:firefox_esr:10.0.6", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:thunderbird:3.0.9", "cpe:/a:mozilla:thunderbird:31.5", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:thunderbird:3.0.1", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:thunderbird:1.5.1", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox_esr:10.0.7", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:thunderbird:3.1.15", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:thunderbird:1.0.7", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:thunderbird:3.0.11", "cpe:/a:mozilla:thunderbird:24.6", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox_esr:38.2.1::~~~~x64~", "cpe:/a:mozilla:thunderbird:3.1.9", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:thunderbird:15.0", "cpe:/a:mozilla:thunderbird:0.2", "cpe:/a:mozilla:thunderbird:1.5.0.5", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:thunderbird:12.0.1", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:thunderbird:45.1.0", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:thunderbird:17.0.3", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox_esr:24.5", "cpe:/a:mozilla:thunderbird:24.7", "cpe:/a:mozilla:thunderbird:2.0.0.16", "cpe:/a:mozilla:thunderbird:2.0.14", "cpe:/a:mozilla:firefox_esr:31.2", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:thunderbird:31.5.0", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:thunderbird:3.1.7", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox_esr:24.0.2", "cpe:/a:mozilla:firefox_esr:31.5.1", "cpe:/a:mozilla:thunderbird:1.5.0.11", "cpe:/a:mozilla:thunderbird:31.2.0", "cpe:/a:mozilla:thunderbird:0.1", "cpe:/a:mozilla:thunderbird:17.0.9", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:thunderbird:2.0.0.14", "cpe:/a:mozilla:thunderbird:45.2.0", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:thunderbird:1.5.0.7", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox_esr:31.5.3", "cpe:/a:mozilla:firefox_esr:38.0.1", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:thunderbird:24.7.0", "cpe:/a:mozilla:thunderbird:31.0", "cpe:/a:mozilla:thunderbird:24.4", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:thunderbird:0.9", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:thunderbird:2.0.0.15", "cpe:/a:mozilla:thunderbird:2.0.0.8", "cpe:/a:mozilla:firefox_esr:24.0.1", "cpe:/a:mozilla:thunderbird:1.7.3", "cpe:/a:mozilla:firefox_esr:17.0.6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:thunderbird:1.0.3", "cpe:/a:mozilla:firefox_esr:17.0.1", "cpe:/a:mozilla:firefox_esr:24.1.1", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox_esr:38.0", "cpe:/a:mozilla:thunderbird:2.0.0.18", "cpe:/a:mozilla:thunderbird:0.3", "cpe:/a:mozilla:thunderbird:2.0.0.6", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/a:mozilla:firefox_esr:45.1.0", "cpe:/a:mozilla:firefox_esr:31.1.0", "cpe:/a:mozilla:firefox:21.0", "cpe:/a:mozilla:thunderbird:13.0.1"], "id": "CVE-2016-5291", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5291", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}, {"lastseen": "2018-12-04T11:53:51", "references": ["http://www.securitytracker.com/id/1039427", "http://www.securitytracker.com/id/1037298", "https://bugzilla.mozilla.org/show_bug.cgi?id=1274777", "http://www.securityfocus.com/bid/94337", "https://www.debian.org/security/2017/dsa-3898", "https://www.mozilla.org/security/advisories/mfsa2016-89/"], "description": "An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:00", "title": "CVE-2016-9063", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:51", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-9063"], "scanner": [], "modified": "2018-07-30T14:31:45", "cpe": ["cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:firefox:44.0", "cpe:/o:debian:debian_linux:10.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/o:debian:debian_linux:8.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:firefox:17.0.1", "cpe:/a:mozilla:firefox:38.3.0", "cpe:/a:mozilla:firefox:27.0", "cpe:/a:mozilla:firefox:45.5.0", "cpe:/a:mozilla:firefox:3.5.5", "cpe:/a:mozilla:firefox:44.0.2", "cpe:/a:mozilla:firefox:10.0.5", "cpe:/a:mozilla:firefox:17.0.2", "cpe:/a:mozilla:firefox:3.0.5", "cpe:/a:mozilla:firefox:36.0.4", "cpe:/a:mozilla:firefox:3.6", "cpe:/a:mozilla:firefox:11.0", "cpe:/a:mozilla:firefox:24.6.0", "cpe:/a:mozilla:firefox:4.0", "cpe:/a:mozilla:firefox:30.0", "cpe:/a:mozilla:firefox:0.9.2", "cpe:/a:mozilla:firefox:1.5.6", "cpe:/a:mozilla:firefox:3.6.26", "cpe:/a:mozilla:firefox:23.0", "cpe:/a:mozilla:firefox:3.0.18", "cpe:/a:mozilla:firefox:45.3.0", "cpe:/a:mozilla:firefox:1.5:beta2", "cpe:/a:mozilla:firefox:1.0.4", "cpe:/a:mozilla:firefox:2.0.0.7", "cpe:/a:mozilla:firefox:31.6.0", "cpe:/a:mozilla:firefox:3.5.1", "cpe:/a:mozilla:firefox:3.5.7", "cpe:/a:mozilla:firefox:1.0.7", "cpe:/a:mozilla:firefox:1.0.6", "cpe:/a:mozilla:firefox:24.2.0", "cpe:/a:mozilla:firefox:20.0", "cpe:/a:mozilla:firefox:9.0.1", "cpe:/a:mozilla:firefox:3.0.9", "cpe:/a:mozilla:firefox:3.6.8", "cpe:/a:mozilla:firefox:1.0.1", "cpe:/a:mozilla:firefox:17.0.9", "cpe:/a:mozilla:firefox:31.5.2", "cpe:/a:mozilla:firefox:7.0.1", "cpe:/a:mozilla:firefox:38.1.1", "cpe:/a:mozilla:firefox:3.0.19", "cpe:/a:mozilla:firefox:2.0.0.15", "cpe:/a:mozilla:firefox:41.0.2", "cpe:/a:mozilla:firefox:3.6.3", "cpe:/a:mozilla:firefox:31.7.0", "cpe:/a:mozilla:firefox:3.6.23", "cpe:/a:mozilla:firefox:24.8.0", "cpe:/a:mozilla:firefox:3.6.9", "cpe:/a:mozilla:firefox:3.6.24", "cpe:/a:mozilla:firefox:3.5", "cpe:/a:mozilla:firefox:1.5.0.10", "cpe:/a:mozilla:firefox:31.1.1", "cpe:/a:mozilla:firefox:3.5.16", "cpe:/a:mozilla:firefox:31.8.0", "cpe:/a:mozilla:firefox:24.4.0", "cpe:/a:mozilla:firefox:45.0", "cpe:/a:mozilla:firefox:35.0", "cpe:/a:mozilla:firefox:33.0.2", "cpe:/a:mozilla:firefox:15.0", "cpe:/a:mozilla:firefox:42.0::~~~~x64~", "cpe:/a:mozilla:firefox:19.0.1", "cpe:/a:mozilla:firefox:1.0.2", "cpe:/a:mozilla:firefox:48.0.1", "cpe:/a:mozilla:firefox:31.4.0", "cpe:/a:mozilla:firefox:17.0.8", "cpe:/a:mozilla:firefox:3.0.16", "cpe:/a:mozilla:firefox:1.5.8", "cpe:/a:mozilla:firefox:4.0:beta5", "cpe:/a:mozilla:firefox:6.0.2", "cpe:/a:mozilla:firefox:42.0", "cpe:/a:mozilla:firefox:3.0.13", "cpe:/a:mozilla:firefox:0.10", "cpe:/a:mozilla:firefox:0.9.1", "cpe:/a:mozilla:firefox:10.0.3", "cpe:/a:mozilla:firefox:0.6", "cpe:/a:mozilla:firefox:13.0", "cpe:/a:mozilla:firefox:3.6.22", "cpe:/a:mozilla:firefox:47.0", "cpe:/a:mozilla:firefox:4.0:beta2", "cpe:/a:mozilla:firefox:31.1.0", "cpe:/a:mozilla:firefox:1.5.5", "cpe:/a:mozilla:firefox:17.0.3", "cpe:/a:mozilla:firefox:3.0.11", "cpe:/a:mozilla:firefox:1.5.0.4", "cpe:/a:mozilla:firefox:24.5.0", "cpe:/a:mozilla:firefox:35.0.1", "cpe:/a:mozilla:firefox:3.6.28", "cpe:/a:mozilla:firefox:38.7.1", "cpe:/a:mozilla:firefox:2.0.0.1", "cpe:/a:mozilla:firefox:1.5.0.9", "cpe:/a:mozilla:firefox:1.5.2", "cpe:/a:mozilla:firefox:12.0", "cpe:/a:mozilla:firefox:3.6.16", "cpe:/a:mozilla:firefox:40.0", "cpe:/a:mozilla:firefox:3.6.25", "cpe:/a:mozilla:firefox:38.0", "cpe:/a:mozilla:firefox:1.5.0.11", "cpe:/a:mozilla:firefox:37.0.1", "cpe:/a:mozilla:firefox:4.0:beta11", "cpe:/a:mozilla:firefox:49.0.1", "cpe:/a:mozilla:firefox:48.0.2", "cpe:/a:mozilla:firefox:17.0", "cpe:/a:mozilla:firefox:46.0", "cpe:/a:mozilla:firefox:19.0.2", "cpe:/a:mozilla:firefox:24.7.0", "cpe:/a:mozilla:firefox:3.0.3", "cpe:/a:mozilla:firefox:48.0", "cpe:/a:mozilla:firefox:38.5.1", "cpe:/a:mozilla:firefox:1.5.0.6", "cpe:/a:mozilla:firefox:10.0.10", "cpe:/a:mozilla:firefox:4.0:beta3", "cpe:/a:mozilla:firefox:2.0.0.6", "cpe:/a:mozilla:firefox:10.0.9", "cpe:/a:mozilla:firefox:2.0.0.5", "cpe:/a:mozilla:firefox:31.2.0", "cpe:/a:mozilla:firefox:29.0.1", "cpe:/a:mozilla:firefox:1.5", "cpe:/a:mozilla:firefox:15.0.1", "cpe:/a:mozilla:firefox:3.0.6", "cpe:/a:mozilla:firefox:1.5.0.7", "cpe:/a:mozilla:firefox:49.0", "cpe:/a:mozilla:firefox:31.3.0", "cpe:/a:mozilla:firefox:6.0", "cpe:/a:mozilla:firefox:32.0.1", "cpe:/a:mozilla:firefox:3.5.17", "cpe:/a:mozilla:firefox:3.6.21", "cpe:/a:mozilla:firefox:28.0", "cpe:/a:mozilla:firefox:18.0.1", "cpe:/a:mozilla:firefox:32.0.2", "cpe:/a:mozilla:firefox:31.5.0", "cpe:/a:mozilla:firefox:33.0.1", "cpe:/a:mozilla:firefox:3.5.8", "cpe:/a:mozilla:firefox:45.8.0", "cpe:/a:mozilla:firefox:10.0.2", "cpe:/a:mozilla:firefox:0.9:rc", "cpe:/a:mozilla:firefox:45.9.0", "cpe:/a:mozilla:firefox:18.0.2", "cpe:/a:mozilla:firefox:5.0", "cpe:/a:mozilla:firefox:38.5.0", "cpe:/a:mozilla:firefox:3.0.15", "cpe:/a:mozilla:firefox:43.0", "cpe:/a:mozilla:firefox:24.0", "cpe:/a:mozilla:firefox:37.0", "cpe:/a:mozilla:firefox:3.0.7", "cpe:/a:mozilla:firefox:0.1", "cpe:/a:mozilla:firefox:36.0.3", "cpe:/a:mozilla:firefox:27.0.1", "cpe:/a:mozilla:firefox:-", "cpe:/a:mozilla:firefox:25.0.1", "cpe:/a:mozilla:firefox:16.0.1", "cpe:/a:mozilla:firefox:3.0", "cpe:/a:mozilla:firefox:3.6.15", "cpe:/a:mozilla:firefox:45.2.0", "cpe:/a:mozilla:firefox:1.5.3", "cpe:/a:mozilla:firefox:10.0.6", "cpe:/a:mozilla:firefox:3.5.11", "cpe:/a:mozilla:firefox:24.1", "cpe:/a:mozilla:firefox:45.5.1", "cpe:/a:mozilla:firefox:16.0", "cpe:/a:mozilla:firefox:17.0.4", "cpe:/a:mozilla:firefox:3.0.10", "cpe:/a:mozilla:firefox:22.0", "cpe:/a:mozilla:firefox:3.6.11", "cpe:/a:mozilla:firefox:3.0.8", "cpe:/a:mozilla:firefox:38.2.1", "cpe:/a:mozilla:firefox:4.0:beta9", "cpe:/a:mozilla:firefox:40.0.2", "cpe:/a:mozilla:firefox:1.0.8", "cpe:/a:mozilla:firefox:1.5.0.8", "cpe:/a:mozilla:firefox:3.0.1", "cpe:/a:mozilla:firefox:0.9", "cpe:/a:mozilla:firefox:23.0.1", "cpe:/a:mozilla:firefox:3.5.15", "cpe:/a:mozilla:firefox:3.6.13", "cpe:/a:mozilla:firefox:3.5.4", "cpe:/a:mozilla:firefox:3.6.27", "cpe:/a:mozilla:firefox:38.0.1", "cpe:/a:mozilla:firefox:3.5.9", "cpe:/a:mozilla:firefox:41.0", "cpe:/a:mozilla:firefox:3.6.10", "cpe:/a:mozilla:firefox:10.0.12", "cpe:/a:mozilla:firefox:45.7.0", "cpe:/a:mozilla:firefox:43.0.3", "cpe:/a:mozilla:firefox:45.0.1", "cpe:/a:mozilla:firefox:45.4.0", "cpe:/a:mozilla:firefox:32.0.3", "cpe:/a:mozilla:firefox:3.5.2", "cpe:/a:mozilla:firefox:40.0.3", "cpe:/a:mozilla:firefox:2.0.0.16", "cpe:/a:mozilla:firefox:10.0.11", "cpe:/a:mozilla:firefox:3.5.10", "cpe:/a:mozilla:firefox:0.2", "cpe:/a:mozilla:firefox:33.0", "cpe:/a:mozilla:firefox:26.0", "cpe:/a:mozilla:firefox:0.7", "cpe:/a:mozilla:firefox:3.6.6", "cpe:/a:mozilla:firefox:37.0.2", "cpe:/a:mozilla:firefox:1.4.1", "cpe:/a:mozilla:firefox:13.0.1", "cpe:/a:mozilla:firefox:2.0.0.19", "cpe:/a:mozilla:firefox:3.0.17", "cpe:/a:mozilla:firefox:39.0", "cpe:/a:mozilla:firefox:0.7.1", "cpe:/a:mozilla:firefox:2.0.0.11", "cpe:/a:mozilla:firefox:38.0.5", "cpe:/a:mozilla:firefox:2.0.0.4", "cpe:/a:mozilla:firefox:38.6.0", "cpe:/a:mozilla:firefox:10.0.8", "cpe:/a:mozilla:firefox:19.0", "cpe:/a:mozilla:firefox:0.6.1", "cpe:/a:mozilla:firefox:24.3.0", "cpe:/a:mozilla:firefox:36.0.1", "cpe:/a:mozilla:firefox:0.9.3", "cpe:/a:mozilla:firefox:12.0:beta6", "cpe:/a:mozilla:firefox:3.6.14", "cpe:/a:mozilla:firefox:43.0.4", "cpe:/a:mozilla:firefox:0.3", "cpe:/a:mozilla:firefox:3.6.18", "cpe:/a:mozilla:firefox:4.0:beta1", "cpe:/o:debian:debian_linux:9.0", "cpe:/a:mozilla:firefox:21.0"], "id": "CVE-2016-9063", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9063", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-04T11:53:49", "references": ["https://www.mozilla.org/security/advisories/mfsa2016-90/", "https://security.gentoo.org/glsa/201701-15", "https://bugzilla.mozilla.org/show_bug.cgi?id=1303678", "http://www.securitytracker.com/id/1037298", "https://www.debian.org/security/2016/dsa-3730", "https://www.mozilla.org/security/advisories/mfsa2016-93/", "http://www.securityfocus.com/bid/94336", "https://www.mozilla.org/security/advisories/mfsa2016-89/", "http://rhn.redhat.com/errata/RHSA-2016-2780.html"], "description": "An error in argument length checking in JavaScript, leading to potential integer overflows or other bounds checking issues. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.", "edition": 4, "reporter": "NVD", "published": "2018-06-11T17:29:00", "title": "CVE-2016-5297", "type": "cve", "enchantments": {"score": {"modified": "2018-12-04T11:53:49", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-5297"], "scanner": [], "modified": "2018-07-30T08:53:51", "cpe": ["cpe:/a:mozilla:thunderbird:2.0.0.11", "cpe:/a:mozilla:thunderbird:11.0", "cpe:/a:mozilla:thunderbird:24.2.0", "cpe:/a:mozilla:thunderbird:45.1.1", "cpe:/a:mozilla:firefox:2.0.0.9", "cpe:/a:mozilla:thunderbird:38.3.0", "cpe:/a:mozilla:thunderbird:1.5.0.10", "cpe:/a:mozilla:thunderbird:3.0.6", "cpe:/a:mozilla:firefox:3.0.2", "cpe:/a:mozilla:firefox_esr:38.5.0", "cpe:/a:mozilla:thunderbird:24.6.0", "cpe:/a:mozilla:firefox:47.0.2", "cpe:/a:mozilla:firefox_esr:45.0.2", "cpe:/a:mozilla:firefox:4.0:beta7", "cpe:/a:mozilla:firefox:3.5.6", "cpe:/a:mozilla:firefox:17.0.10", "cpe:/a:mozilla:firefox:1.5.0.3", "cpe:/a:mozilla:thunderbird:3.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.3", "cpe:/a:mozilla:firefox_esr:38.0.5", "cpe:/a:mozilla:firefox_esr:38.6.1", "cpe:/a:mozilla:firefox:41.0.1", "cpe:/a:mozilla:firefox:34.0.5", "cpe:/a:mozilla:thunderbird:2.0.0.9", "cpe:/a:mozilla:firefox:1.5.0.2", "cpe:/a:mozilla:firefox:2.0.0.14", "cpe:/a:mozilla:firefox:39.0.3", "cpe:/a:mozilla:firefox:24.1.0", "cpe:/a:mozilla:firefox:17.0.6", "cpe:/a:mozilla:firefox:20.0.1", "cpe:/a:mozilla:firefox_esr:45.4.0", "cpe:/a:mozilla:firefox:3.5.12", "cpe:/a:mozilla:firefox_esr:10.0.4", "cpe:/a:mozilla:firefox:31.0", "cpe:/a:mozilla:firefox:4.0:beta10", "cpe:/a:mozilla:firefox:3.5.14", "cpe:/a:mozilla:firefox:3.6.20", "cpe:/a:mozilla:firefox:2.0.0.18", "cpe:/a:mozilla:firefox:33.1.1", "cpe:/a:mozilla:firefox_esr:17.0.3", "cpe:/a:mozilla:thunderbird:31.4", "cpe:/a:mozilla:thunderbird:3.1.16", "cpe:/a:mozilla:firefox:2.0.0.8", "cpe:/a:mozilla:firefox:18.0", "cpe:/a:mozilla:thunderbird:31.6.0", "cpe:/a:mozilla:thunderbird:24.1.0", "cpe:/a:mozilla:thunderbird:0.7", "cpe:/a:mozilla:firefox:43.0.2", "cpe:/a:mozilla:thunderbird:24.3", "cpe:/a:mozilla:firefox_esr:38.2.0::~~~~x64~", "cpe:/a:mozilla:thunderbird:3.1.11", "cpe:/a:mozilla:firefox:8.0", "cpe:/a:mozilla:firefox:3.5.18", "cpe:/a:mozilla:thunderbird:3.0", "cpe:/a:mozilla:firefox:3.0.12", "cpe:/a:mozilla:thunderbird:17.0.10", "cpe:/a:mozilla:firefox:17.0.11", "cpe:/a:mozilla:firefox:16.0.2", "cpe:/a:mozilla:thunderbird:10.0.3", "cpe:/a:mozilla:firefox:46.0.1", "cpe:/a:mozilla:firefox_esr:38.0.1::~~~~x64~", "cpe:/a:mozilla:firefox_esr:38.7.0", "cpe:/a:mozilla:firefox:24.8.1", "cpe:/a:mozilla:firefox:38.8.0", "cpe:/a:mozilla:firefox:0.4", "cpe:/a:mozilla:firefox:1.5.1", "cpe:/a:mozilla:firefox:1.5.4", "cpe:/a:mozilla:thunderbird:1.5:beta2", "cpe:/a:mozilla:thunderbird:-", "cpe:/a:mozilla:thunderbird:17.0.8", "cpe:/a:mozilla:firefox:44.0", "cpe:/a:mozilla:firefox:2.0.0.13", "cpe:/a:mozilla:firefox:3.5.19", "cpe:/a:mozilla:firefox:43.0.1", "cpe:/a:mozilla:firefox:38.5.2", "cpe:/a:mozilla:firefox_esr:38.0.5::~~~~x64~", "cpe:/a:mozilla:firefox:45.6.0", "cpe:/a:mozilla:thunderbird:24.5", "cpe:/a:mozilla:firefox:38.4.0", "cpe:/a:mozilla:firefox:38.2.0", "cpe:/a:mozilla:thunderbird:2.0.0.21", "cpe:/a:mozilla:firefox_esr:24.8", "cpe:/a:mozilla:thunderbird:24.1", "cpe:/a:mozilla:thunderbird:7.0", "cpe:/a:mozilla:firefox:10.0.4", "cpe:/a:mozilla:firefox:0.5", "cpe:/a:mozilla:thunderbird:38.7.1", "cpe:/a:mozilla:thunderbird:31.7.0", "cpe:/a:mozilla:firefox:4.0.1", "cpe:/a:mozilla:firefox:10.0", "cpe:/a:mozilla:firefox:3.5.3", "cpe:/a:mozilla:firefox:2.0.0.3", "cpe:/a:mozilla:firefox:45.0.2", "cpe:/a:mozilla:thunderbird:1.0.8", "cpe:/a:mozilla:firefox:8.0.1", "cpe:/a:mozilla:firefox_esr:45.3.0", "cpe:/a:mozilla:thunderbird:3.1.6", "cpe:/a:mozilla:firefox_esr:10.0.2", "cpe:/a:mozilla:firefox:2.0.0.2", "cpe:/a:mozilla:firefox:31.5.3", "cpe:/a:mozilla:firefox:1.5.0.1", "cpe:/a:mozilla:firefox:3.6.12", "cpe:/a:mozilla:firefox:3.6.7", "cpe:/a:mozilla:firefox:3.6.2", "cpe:/a:mozilla:firefox:4.0:beta6", "cpe:/a:mozilla:firefox_esr:24.2", "cpe:/a:mozilla:firefox:2.0.0.12", "cpe:/a:mozilla:thunderbird:38.7.2", "cpe:/a:mozilla:firefox:3.5.13", "cpe:/a:mozilla:thunderbird:3.0.7", "cpe:/a:mozilla:firefox:36.0", "cpe:/a:mozilla:firefox_esr:38.4.0", "cpe:/a:mozilla:firefox:38.7.0", "cpe:/a:mozilla:firefox:3.0.4", "cpe:/a:mozilla:firefox:3.6.17", "cpe:/a:mozilla:firefox:0.8", "cpe:/a:mozilla:firefox:25.0", "cpe:/a:mozilla:firefox:5.0.1", "cpe:/a:mozilla:firefox:45.1.1", "cpe:/a:mozilla:thunderbird:38.5.1", "cpe:/a:mozilla:firefox:44.0.1", "cpe:/a:mozilla:firefox:33.1", "cpe:/a:mozilla:firefox:7.0", "cpe:/a:mozilla:firefox_esr:31.6", "cpe:/a:mozilla:firefox:10.0.1", "cpe:/a:mozilla:firefox_esr:10.0.5", "cpe:/a:mozilla:firefox:3.0.14", "cpe:/a:mozilla:firefox:14.0.1", "cpe:/a:mozilla:thunderbird:38.0", "cpe:/a:mozilla:firefox:3.6.4", "cpe:/a:mozilla:thunderbird:10.0.4", "cpe:/a:mozilla:firefox:1.5.7", "cpe:/a:mozilla:thunderbird:1.0.4", "cpe:/a:mozilla:firefox:17.0.7", "cpe:/a:mozilla:firefox:38.1.0", "cpe:/a:mozilla:firefox:3.6.19", "cpe:/a:mozilla:thunderbird:2.0.0.22", "cpe:/a:mozilla:firefox:33.0.3", "cpe:/a:mozilla:thunderbird:31.4.0", "cpe:/a:mozilla:thunderbird:3.1.19", "cpe:/a:mozilla:firefox:34.0", "cpe:/a:mozilla:firefox:1.0.5", "cpe:/a:mozilla:firefox:9.0", "cpe:/a:mozilla:thunderbird:2.0.0.12", "cpe:/a:mozilla:firefox_esr:17.0.4", "cpe:/a:mozilla:firefox:10.0.7", "cpe:/a:mozilla:thunderbird:1.5.0.2", "cpe:/a:mozilla:firefox:29.0", "cpe:/a:mozilla:firefox_esr:38.1.0", "cpe:/a:mozilla:thunderbird:1.7.1", "cpe:/a:mozilla:firefox:2.0.0.17", "cpe:/a:mozilla:firefox:49.0.2", "cpe:/a:mozilla:thunderbird:1.5.0.9", "cpe:/a:mozilla:firefox:24.1.1", "cpe:/a:mozilla:thunderbird:24.5.0", "cpe:/a:mozilla:firefox:0.10.1", "cpe:/a:mozilla:firefox:14.0", "cpe:/a:mozilla:firefox_esr:24.1.0", "cpe:/a:mozilla:thunderbird:10.0", "cpe:/a:mozilla:firefox_esr:10.0.3", "cpe:/a:mozilla:firefox_esr:10.0.11", "cpe:/o:debian:debian_linux:8.0", "cpe:/a:mozilla:firefox:17.0.5", "cpe:/a:mozilla:firefox_esr:17.0.10", "cpe:/a:mozilla:firefox:2.0", "cpe:/a:mozilla:firefox:4.0:beta12", "cpe:/a:mozilla:firefox_esr:38.1.1", "cpe:/a:mozilla:thunderbird:1.5.0.4", "cpe:/a:mozilla:firefox:1.0:preview_release", "cpe:/a:mozilla:firefox:47.0.1", "cpe:/a:mozilla:thunderbird:3.0.10", "cpe:/a:mozilla:firefox:1.0", "cpe:/a:mozilla:firefox:6.0.1", "cpe:/a:mozilla:firefox:2.0.0.20", "cpe:/a:mozilla:thunderbird:3.1", "cpe:/a:mozilla:firefox:1.5:beta1", "cpe:/a:mozilla:firefox:4.0:beta4", "cpe:/a:mozilla:thunderbird:15.0.1", "cpe:/a:mozilla:firefox:38.6.1", "cpe:/a:mozilla:firefox:1.0.3", "cpe:/a:mozilla:firefox:32.0", "cpe:/a:mozilla:firefox_esr:31.3.0", "cpe:/a:mozilla:firefox:2.0.0.10", "cpe:/a:mozilla:firefox_esr:10.0.1", "cpe:/a:mozilla:thunderbird:1.5.0.6", "cpe:/a:mozilla:firefox:4.0:beta8", "cpe:/a:mozilla:thunderbird:31.1.2", "cpe:/a:mozilla:thunderbird:1.0", "cpe:/a:mozilla:firefox:1.8", "cpe:/a:mozilla:firefox:1.5.0.5", "cpe:/a:mozilla:firefox:1.5.0.12", "cpe:/a:mozilla:thunderbird:1.0.1", "cpe:/a:mozilla:firefox:17.
