Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2020-0971-1.NASLHistoryApr 10, 2020 - 12:00 a.m.
SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:0971-1)
2020-04-1000:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
8.6 High
AI Score
Confidence
Low
This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues :
CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method (bsc#1168874).
CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images (bsc#1168874).
CVE-2020-6825: Fixed Memory safety bugs (bsc#1168874).
CVE-2020-6827: Custom Tabs could have the URI spoofed (bsc#1168874).
CVE-2020-6828: Preference overwrite via crafted Intent (bsc#1168874).
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2020:0971-1.
# The text itself is copyright (C) SUSE.
#
include('compat.inc');
if (description)
{
script_id(135396);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/19");
script_cve_id(
"CVE-2020-6821",
"CVE-2020-6822",
"CVE-2020-6825",
"CVE-2020-6827",
"CVE-2020-6828"
);
script_name(english:"SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:0971-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"This update for MozillaFirefox to version 68.7.0 ESR fixes the
following issues :
CVE-2020-6821: Uninitialized memory could be read when using the WebGL
copyTexSubImage method (bsc#1168874).
CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when
processing large images (bsc#1168874).
CVE-2020-6825: Fixed Memory safety bugs (bsc#1168874).
CVE-2020-6827: Custom Tabs could have the URI spoofed (bsc#1168874).
CVE-2020-6828: Preference overwrite via crafted Intent (bsc#1168874).
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1168874");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-6821/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-6822/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-6825/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-6827/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-6828/");
# https://www.suse.com/support/update/announcement/2020/suse-su-20200971-1/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?da05a1a6");
script_set_attribute(attribute:"solution", value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Module for Open Buildservice Development Tools
15-SP1:zypper in -t patch
SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-971=1
SUSE Linux Enterprise Module for Desktop Applications 15-SP1:zypper in
-t patch SUSE-SLE-Module-Desktop-Applications-15-SP1-2020-971=1");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-6825");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/04/24");
script_set_attribute(attribute:"patch_publication_date", value:"2020/04/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/04/10");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-branding-upstream");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-buildsymbols");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-translations-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:MozillaFirefox-translations-other");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED15|SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED15 / SLES15", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP1", os_ver + " SP" + sp);
if (os_ver == "SLED15" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLED15 SP1", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES15", sp:"1", cpu:"x86_64", reference:"MozillaFirefox-buildsymbols-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", cpu:"x86_64", reference:"MozillaFirefox-devel-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", cpu:"s390x", reference:"MozillaFirefox-devel-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-branding-upstream-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-debuginfo-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-debugsource-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-translations-common-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"MozillaFirefox-translations-other-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", cpu:"x86_64", reference:"MozillaFirefox-buildsymbols-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", cpu:"x86_64", reference:"MozillaFirefox-devel-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", cpu:"s390x", reference:"MozillaFirefox-devel-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-branding-upstream-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-debuginfo-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-debugsource-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-translations-common-68.7.0-3.84.2")) flag++;
if (rpm_check(release:"SLED15", sp:"1", reference:"MozillaFirefox-translations-other-68.7.0-3.84.2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "MozillaFirefox");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | mozillafirefox | p-cpe:/a:novell:suse_linux:mozillafirefox |
| novell | suse_linux | mozillafirefox-branding-upstream | p-cpe:/a:novell:suse_linux:mozillafirefox-branding-upstream |
| novell | suse_linux | mozillafirefox-buildsymbols | p-cpe:/a:novell:suse_linux:mozillafirefox-buildsymbols |
| novell | suse_linux | mozillafirefox-debuginfo | p-cpe:/a:novell:suse_linux:mozillafirefox-debuginfo |
| novell | suse_linux | mozillafirefox-debugsource | p-cpe:/a:novell:suse_linux:mozillafirefox-debugsource |
| novell | suse_linux | mozillafirefox-devel | p-cpe:/a:novell:suse_linux:mozillafirefox-devel |
| novell | suse_linux | mozillafirefox-translations-common | p-cpe:/a:novell:suse_linux:mozillafirefox-translations-common |
| novell | suse_linux | mozillafirefox-translations-other | p-cpe:/a:novell:suse_linux:mozillafirefox-translations-other |
| novell | suse_linux | 15 | cpe:/o:novell:suse_linux:15 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6821
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6822
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6825
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6827
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6828
www.nessus.org/u?da05a1a6
bugzilla.suse.com/show_bug.cgi?id=1168874
www.suse.com/security/cve/CVE-2020-6821/
www.suse.com/security/cve/CVE-2020-6822/
www.suse.com/security/cve/CVE-2020-6825/
www.suse.com/security/cve/CVE-2020-6827/
www.suse.com/security/cve/CVE-2020-6828/
Related
nessus
nessus
Mozilla Firefox ESR < 68.7 Multiple Vulnerabilities (mfsa2020-13)
2020-04-07 00:00:00
SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14339-1)
2021-06-10 00:00:00
openSUSE Security Update : MozillaFirefox (openSUSE-2020-493)
2020-04-14 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:0971-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:0493-1)
2020-04-11 00:00:00
kaspersky
kaspersky
KLA11726 Multiple vulnerabilities in Mozilla Firefox ESR
2020-04-07 00:00:00
KLA11730 Multiple vulnerabilities in Mozilla Thunderbird
2020-04-09 00:00:00
KLA11725 Multiple vulnerabilities in Mozilla Firefox
2020-04-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 68.7.0-alt1
2020-04-06 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 68.7.0-alt1
2020-04-08 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2020-04-07 22:50:22
suse
suse
Security update for MozillaFirefox (important)
2020-04-10 00:00:00
Security update for MozillaThunderbird (important)
2020-04-23 00:00:00
Security update for MozillaThunderbird (important)
2020-04-15 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 68.7 — Mozilla
2020-04-07 00:00:00
Security Vulnerabilities fixed in Thunderbird 68.7.0 — Mozilla
2020-04-09 00:00:00
Security Vulnerabilities fixed in Firefox 75 — Mozilla
2020-04-07 00:00:00
osv
osv
firefox-esr - security update
2020-04-08 00:00:00
firefox-esr - security update
2020-04-08 00:00:00
thunderbird - security update
2020-04-14 00:00:00
debian
debian
[SECURITY] [DSA 4655-1] firefox-esr security update
2020-04-08 17:22:19
[SECURITY] [DSA 4656-1] thunderbird security update
2020-04-13 19:42:57
[SECURITY] [DLA 2170-1] firefox-esr security update
2020-04-08 11:36:20
redhat
redhat
(RHSA-2020:1420) Important: firefox security update
2020-04-09 08:57:47
(RHSA-2020:1406) Important: firefox security update
2020-04-08 15:36:05
(RHSA-2020:1429) Important: firefox security update
2020-04-14 06:52:26
mageia
mageia
Updated firefox packages fix security vulnerabilities
2020-04-08 20:12:00
Updated thunderbird packages fix security vulnerabilities
2020-04-15 13:12:14
ibm
ibm
centos
centos
firefox security update
2020-04-28 00:22:09
thunderbird security update
2020-04-28 00:21:12
thunderbird security update
2020-04-30 19:57:02
oraclelinux
oraclelinux
firefox security update
2020-04-11 00:00:00
firefox security update
2020-04-09 00:00:00
firefox security update
2020-07-07 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2020-04-23 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2020-04-07 00:00:00
Thunderbird vulnerabilities
2020-04-13 00:00:00
Thunderbird vulnerabilities
2020-04-21 00:00:00
redhatcve
redhatcve
debiancve
debiancve
cve
cve
archlinux
archlinux
[ASA-202004-8] firefox: multiple issues
2020-04-08 00:00:00
[ASA-202004-12] thunderbird: multiple issues
2020-04-13 00:00:00
prion
prion
Code injection
2020-04-24 16:15:00
Out-of-bounds
2020-04-24 16:15:00
Memory corruption
2020-04-24 16:15:00
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2020-04-09 01:07:00
Information Disclosure
2020-04-09 01:06:59
Denial Of Service (DoS)
2020-04-09 01:07:00
alpinelinux
alpinelinux
amazon
amazon
Critical: thunderbird
2020-05-19 18:32:00