DATABASE RESOURCES PRICING ABOUT US

{"id": "UB:CVE-2020-26969", "vendorId": null, "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2020-26969", "description": "Mozilla developers reported memory safety bugs present in Firefox 82. Some\nof these bugs showed evidence of memory corruption and we presume that with\nenough effort some of these could have been exploited to run arbitrary\ncode. This vulnerability affects Firefox < 83.\n\n#### Notes\n\nAuthor| Note \n---|--- \n[tyhicks](<https://launchpad.net/~tyhicks>) | mozjs contains a copy of the SpiderMonkey JavaScript engine\n", "published": "2020-11-17T00:00:00", "modified": "2020-11-17T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 9.3}, "severity": "HIGH", "exploitabilityScore": 8.6, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "href": "https://ubuntu.com/security/CVE-2020-26969", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26969", "https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26969", "https://ubuntu.com/security/notices/USN-4637-1", "https://ubuntu.com/security/notices/USN-4637-2", "https://nvd.nist.gov/vuln/detail/CVE-2020-26969", "https://launchpad.net/bugs/cve/CVE-2020-26969", "https://security-tracker.debian.org/tracker/CVE-2020-26969"], "cvelist": ["CVE-2020-26969"], "immutableFields": [], "lastseen": "2022-10-26T13:42:26", "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "archlinux", "idList": ["ASA-202011-12"]}, {"type": "cve", "idList": ["CVE-2020-26969"]}, {"type": "debiancve", "idList": ["DEBIANCVE:CVE-2020-26969"]}, {"type": "kaspersky", "idList": ["KLA12010", "KLA12011"]}, {"type": "mozilla", "idList": ["MFSA2020-50"]}, {"type": "nessus", "idList": ["MACOS_FIREFOX_83_0.NASL", "MOZILLA_FIREFOX_83_0.NASL", "UBUNTU_USN-4637-1.NASL", "UBUNTU_USN-4637-2.NASL"]}, {"type": "ubuntu", "idList": ["USN-4637-1", "USN-4637-2"]}, {"type": "veracode", "idList": ["VERACODE:27954"]}]}, "score": {"value": 3.5, "vector": "NONE"}, "backreferences": {"references": [{"type": "archlinux", "idList": ["ASA-202011-12"]}, {"type": "cve", "idList": ["CVE-2020-26969"]}, {"type": "debiancve", "idList": ["DEBIANCVE:CVE-2020-26969"]}, {"type": "kaspersky", "idList": ["KLA12011"]}, {"type": "mozilla", "idList": ["MFSA2020-50"]}, {"type": "nessus", "idList": ["MACOS_FIREFOX_83_0.NASL", "MOZILLA_FIREFOX_83_0.NASL", "UBUNTU_USN-4637-1.NASL", "UBUNTU_USN-4637-2.NASL"]}, {"type": "ubuntu", "idList": ["USN-4637-1", "USN-4637-2"]}]}, "exploitation": null, "vulnersScore": 3.5}, "_state": {"dependencies": 1666791809, "score": 1666791848}, "_internal": {"score_hash": "b14b6415629373804cc99aa306a962e3"}, "affectedPackage": [{"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu0.20.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "20.10", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu0.20.10.1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "21.10", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "22.04", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu1", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "83", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "83.0+build2-0ubuntu0.16.04.3", "packageFilename": "UNKNOWN", "operator": "lt", "status": "released", "packageName": "firefox"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs38"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs52"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs52"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs60"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs68"}, {"OS": "ubuntu", "OSVersion": "upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "status": "needs triage", "packageName": "mozjs68"}], "bugs": []}

{"veracode": [{"lastseen": "2022-07-26T13:29:38", "description": "firefox is vulnerable to arbitrary code execution. The vulnerability exists through memory safety bugs that leads to memory corruption.\n", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-11-20T10:10:07", "type": "veracode", "title": "Arbitrary Code Execution", "bulletinFamily": "software", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-26969"], "modified": "2020-12-10T20:42:57", "id": "VERACODE:27954", "href": "https://sca.analysiscenter.veracode.com/vulnerability-database/security/1/1/sid-27954/summary", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "cve": [{"lastseen": "2022-03-23T16:17:46", "description": "Mozilla developers reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 83.", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-12-09T01:15:00", "type": "cve", "title": "CVE-2020-26969", "cwe": ["CWE-787"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-26969"], "modified": "2020-12-10T18:35:00", "cpe": [], "id": "CVE-2020-26969", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-26969", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cpe23": []}], "debiancve": [{"lastseen": "2023-01-18T15:21:48", "description": "Mozilla developers reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 83.", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-12-09T01:15:00", "type": "debiancve", "title": "CVE-2020-26969", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-26969"], "modified": "2020-12-09T01:15:00", "id": "DEBIANCVE:CVE-2020-26969", "href": "https://security-tracker.debian.org/tracker/CVE-2020-26969", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "nessus": [{"lastseen": "2022-08-16T15:38:41", "description": "The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4637-2 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "published": "2020-11-20T00:00:00", "type": "nessus", "title": "Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4637-2)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-12-11T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:16.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:firefox", "p-cpe:/a:canonical:ubuntu_linux:firefox-dev", "p-cpe:/a:canonical:ubuntu_linux:firefox-geckodriver", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cak", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ia", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kab", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-my", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ne", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ur", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu", "p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols"], "id": "UBUNTU_USN-4637-2.NASL", "href": "https://www.tenable.com/plugins/nessus/143127", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4637-2. The text\n# itself is copyright (C) Canonical, Inc. See\n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(143127);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/12/11\");\n\n script_cve_id(\n \"CVE-2020-16012\",\n \"CVE-2020-26951\",\n \"CVE-2020-26952\",\n \"CVE-2020-26953\",\n \"CVE-2020-26956\",\n \"CVE-2020-26958\",\n \"CVE-2020-26959\",\n \"CVE-2020-26960\",\n \"CVE-2020-26961\",\n \"CVE-2020-26962\",\n \"CVE-2020-26963\",\n \"CVE-2020-26965\",\n \"CVE-2020-26967\",\n \"CVE-2020-26968\",\n \"CVE-2020-26969\"\n );\n script_xref(name:\"USN\", value:\"4637-2\");\n\n script_name(english:\"Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4637-2)\");\n script_summary(english:\"Checks the dpkg output for the updated packages\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe USN-4637-2 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's\nself-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-4637-2\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-26969\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/11/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/11/20\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-geckodriver\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cak\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kab\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-my\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ne\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ur\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nrelease = chomp(release);\nif (! preg(pattern:\"^(16\\.04)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\npkgs = [\n {'osver': '16.04', 'pkgname': 'firefox', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-dev', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-geckodriver', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-af', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-an', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-as', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-az', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-be', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-br', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-cak', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-da', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-de', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-el', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-en', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-es', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-et', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-gn', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-he', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-hsb', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ia', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-id', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-is', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-it', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-kab', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-km', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-my', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ne', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-or', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-si', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-te', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-th', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-ur', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-uz', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'},\n {'osver': '16.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '83.0+build2-0ubuntu0.16.04.3'}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n osver = NULL;\n pkgname = NULL;\n pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'firefox / firefox-dev / firefox-geckodriver / firefox-locale-af / etc');\n}", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2022-08-16T15:40:42", "description": "The remote Ubuntu 18.04 LTS / 20.04 LTS / 20.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4637-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "published": "2020-11-19T00:00:00", "type": "nessus", "title": "Ubuntu 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4637-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-12-11T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.10", "p-cpe:/a:canonical:ubuntu_linux:firefox", "p-cpe:/a:canonical:ubuntu_linux:firefox-dev", "p-cpe:/a:canonical:ubuntu_linux:firefox-geckodriver", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cak", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ia", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kab", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-my", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ne", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ur", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant", "p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu", "p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols"], "id": "UBUNTU_USN-4637-1.NASL", "href": "https://www.tenable.com/plugins/nessus/143121", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4637-1. The text\n# itself is copyright (C) Canonical, Inc. See\n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(143121);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/12/11\");\n\n script_cve_id(\n \"CVE-2020-16012\",\n \"CVE-2020-26951\",\n \"CVE-2020-26952\",\n \"CVE-2020-26953\",\n \"CVE-2020-26956\",\n \"CVE-2020-26958\",\n \"CVE-2020-26959\",\n \"CVE-2020-26960\",\n \"CVE-2020-26961\",\n \"CVE-2020-26962\",\n \"CVE-2020-26963\",\n \"CVE-2020-26965\",\n \"CVE-2020-26967\",\n \"CVE-2020-26968\",\n \"CVE-2020-26969\"\n );\n script_xref(name:\"USN\", value:\"4637-1\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4637-1)\");\n script_summary(english:\"Checks the dpkg output for the updated packages\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 18.04 LTS / 20.04 LTS / 20.10 host has packages installed that are affected by multiple\nvulnerabilities as referenced in the USN-4637-1 advisory. Note that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-4637-1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-26969\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/11/19\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.10\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-geckodriver\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cak\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kab\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-my\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ne\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ur\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nrelease = chomp(release);\nif (! preg(pattern:\"^(18\\.04|20\\.04|20\\.10)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04 / 20.10', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\npkgs = [\n {'osver': '18.04', 'pkgname': 'firefox', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-dev', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-geckodriver', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-af', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-an', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-as', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-az', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-be', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-br', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-cak', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-da', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-de', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-el', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-en', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-es', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-et', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-gn', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-he', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-hsb', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ia', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-id', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-is', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-it', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-kab', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-km', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-my', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ne', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-or', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-si', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-te', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-th', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-ur', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-uz', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '18.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '83.0+build2-0ubuntu0.18.04.2'},\n {'osver': '20.04', 'pkgname': 'firefox', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-dev', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-geckodriver', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-af', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-an', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-as', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-az', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-be', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-br', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-cak', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-da', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-de', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-el', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-en', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-es', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-et', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-gn', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-he', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-hsb', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ia', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-id', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-is', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-it', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-kab', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-km', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-my', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ne', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-or', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-si', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-te', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-th', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-ur', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-uz', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '83.0+build2-0ubuntu0.20.04.1'},\n {'osver': '20.10', 'pkgname': 'firefox', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-dev', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-geckodriver', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-af', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-an', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ar', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-as', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ast', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-az', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-be', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-bg', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-bn', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-br', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-bs', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ca', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-cak', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-cs', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-csb', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-cy', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-da', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-de', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-el', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-en', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-eo', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-es', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-et', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-eu', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-fa', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-fi', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-fr', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-fy', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ga', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-gd', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-gl', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-gn', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-gu', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-he', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-hi', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-hr', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-hsb', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-hu', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-hy', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ia', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-id', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-is', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-it', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ja', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ka', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-kab', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-kk', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-km', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-kn', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ko', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ku', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-lg', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-lt', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-lv', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-mai', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-mk', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ml', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-mn', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-mr', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ms', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-my', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-nb', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ne', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-nl', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-nn', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-nso', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-oc', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-or', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-pa', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-pl', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-pt', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ro', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ru', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-si', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sk', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sl', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sq', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sr', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sv', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-sw', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ta', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-te', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-th', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-tr', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-uk', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-ur', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-uz', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-vi', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-xh', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-locale-zu', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'},\n {'osver': '20.10', 'pkgname': 'firefox-mozsymbols', 'pkgver': '83.0+build2-0ubuntu0.20.10.1'}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n osver = NULL;\n pkgname = NULL;\n pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'firefox / firefox-dev / firefox-geckodriver / firefox-locale-af / etc');\n}", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2022-12-21T14:40:15", "description": "The version of Firefox installed on the remote Windows host is prior to 83.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-50 advisory, including the following:\n\n - Mozilla developers reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 83. (CVE-2020-26969)\n\n - If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. (CVE-2020-26960)\n\n - Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. (CVE-2020-26968)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "published": "2020-11-17T00:00:00", "type": "nessus", "title": "Mozilla Firefox < 83.0", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2020-15999", "CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26954", "CVE-2020-26955", "CVE-2020-26956", "CVE-2020-26957", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26964", "CVE-2020-26965", "CVE-2020-26966", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2022-12-05T00:00:00", "cpe": ["cpe:/a:mozilla:firefox"], "id": "MOZILLA_FIREFOX_83_0.NASL", "href": "https://www.tenable.com/plugins/nessus/142910", "sourceData": "## \n# (C) Tenable Network Security, Inc.\n# \n# The descriptive text and package checks in this plugin were\n# extracted from Mozilla Foundation Security Advisory mfsa2020-50.\n# The text itself is copyright (C) Mozilla Foundation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(142910);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2022/12/05\");\n\n script_cve_id(\n \"CVE-2020-15999\",\n \"CVE-2020-16012\",\n \"CVE-2020-26951\",\n \"CVE-2020-26952\",\n \"CVE-2020-26953\",\n \"CVE-2020-26954\",\n \"CVE-2020-26955\",\n \"CVE-2020-26956\",\n \"CVE-2020-26957\",\n \"CVE-2020-26958\",\n \"CVE-2020-26959\",\n \"CVE-2020-26960\",\n \"CVE-2020-26961\",\n \"CVE-2020-26962\",\n \"CVE-2020-26963\",\n \"CVE-2020-26964\",\n \"CVE-2020-26965\",\n \"CVE-2020-26966\",\n \"CVE-2020-26967\",\n \"CVE-2020-26968\",\n \"CVE-2020-26969\"\n );\n script_xref(name:\"MFSA\", value:\"2020-50\");\n script_xref(name:\"IAVA\", value:\"2020-A-0537-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2021/11/17\");\n script_xref(name:\"CEA-ID\", value:\"CEA-2020-0124\");\n\n script_name(english:\"Mozilla Firefox < 83.0\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"A web browser installed on the remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Firefox installed on the remote Windows host is prior to 83.0. It is, therefore, affected by multiple\nvulnerabilities as referenced in the mfsa2020-50 advisory, including the following:\n\n - Mozilla developers reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence\n of memory corruption and we presume that with enough effort some of these could have been exploited to run\n arbitrary code. This vulnerability affects Firefox < 83. (CVE-2020-26969)\n\n - If the Compact() method was called on an nsTArray, the array could have been reallocated without updating\n other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects\n Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. (CVE-2020-26960)\n\n - Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these\n bugs showed evidence of memory corruption and we presume that with enough effort some of these could have\n been exploited to run arbitrary code. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and\n Thunderbird < 78.5. (CVE-2020-26968)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Mozilla Firefox version 83.0 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-26969\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/10/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/11/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/11/17\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:mozilla:firefox\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"mozilla_org_installed.nasl\");\n script_require_keys(\"Mozilla/Firefox/Version\");\n\n exit(0);\n}\n\ninclude('mozilla_version.inc');\n\nport = get_kb_item('SMB/transport');\nif (!port) port = 445;\n\ninstalls = get_kb_list('SMB/Mozilla/Firefox/*');\nif (isnull(installs)) audit(AUDIT_NOT_INST, 'Firefox');\n\nmozilla_check_version(installs:installs, product:'firefox', esr:FALSE, fix:'83.0', xss:TRUE, severity:SECURITY_HOLE);\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2022-12-21T14:42:06", "description": "The version of Firefox installed on the remote macOS or Mac OS X host is prior to 83.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-50 advisory.\n\n - Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (CVE-2020-15999)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "published": "2020-11-17T00:00:00", "type": "nessus", "title": "Mozilla Firefox < 83.0", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2020-15999", "CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26954", "CVE-2020-26955", "CVE-2020-26956", "CVE-2020-26957", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26964", "CVE-2020-26965", "CVE-2020-26966", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2022-12-05T00:00:00", "cpe": ["cpe:/a:mozilla:firefox"], "id": "MACOS_FIREFOX_83_0.NASL", "href": "https://www.tenable.com/plugins/nessus/142911", "sourceData": "## \n# (C) Tenable Network Security, Inc.\n# \n# The descriptive text and package checks in this plugin were\n# extracted from Mozilla Foundation Security Advisory mfsa2020-50.\n# The text itself is copyright (C) Mozilla Foundation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(142911);\n script_version(\"1.10\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2022/12/05\");\n\n script_cve_id(\n \"CVE-2020-15999\",\n \"CVE-2020-16012\",\n \"CVE-2020-26951\",\n \"CVE-2020-26952\",\n \"CVE-2020-26953\",\n \"CVE-2020-26954\",\n \"CVE-2020-26955\",\n \"CVE-2020-26956\",\n \"CVE-2020-26957\",\n \"CVE-2020-26958\",\n \"CVE-2020-26959\",\n \"CVE-2020-26960\",\n \"CVE-2020-26961\",\n \"CVE-2020-26962\",\n \"CVE-2020-26963\",\n \"CVE-2020-26964\",\n \"CVE-2020-26965\",\n \"CVE-2020-26966\",\n \"CVE-2020-26967\",\n \"CVE-2020-26968\",\n \"CVE-2020-26969\"\n );\n script_xref(name:\"MFSA\", value:\"2020-50\");\n script_xref(name:\"IAVA\", value:\"2020-A-0537-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2021/11/17\");\n script_xref(name:\"CEA-ID\", value:\"CEA-2020-0124\");\n\n script_name(english:\"Mozilla Firefox < 83.0\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"A web browser installed on the remote macOS or Mac OS X host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Firefox installed on the remote macOS or Mac OS X host is prior to 83.0. It is, therefore, affected by\nmultiple vulnerabilities as referenced in the mfsa2020-50 advisory.\n\n - Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to\n potentially exploit heap corruption via a crafted HTML page. (CVE-2020-15999)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Mozilla Firefox version 83.0 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-26969\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/10/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/11/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/11/17\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:mozilla:firefox\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"macosx_firefox_installed.nasl\");\n script_require_keys(\"MacOSX/Firefox/Installed\");\n\n exit(0);\n}\n\ninclude('mozilla_version.inc');\n\nkb_base = 'MacOSX/Firefox';\nget_kb_item_or_exit(kb_base+'/Installed');\n\nversion = get_kb_item_or_exit(kb_base+'/Version', exit_code:1);\npath = get_kb_item_or_exit(kb_base+'/Path', exit_code:1);\n\nis_esr = get_kb_item(kb_base+'/is_esr');\nif (is_esr) exit(0, 'The Mozilla Firefox installation is in the ESR branch.');\n\nmozilla_check_version(version:version, path:path, product:'firefox', esr:FALSE, fix:'83.0', xss:TRUE, severity:SECURITY_HOLE);\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "ubuntu": [{"lastseen": "2023-01-26T15:30:53", "description": "## Releases\n\n * Ubuntu 20.10 \n * Ubuntu 20.04 LTS\n * Ubuntu 18.04 LTS\n\n## Packages\n\n * firefox \\- Mozilla Open Source web browser\n\nMultiple security issues were discovered in Firefox. If a user were \ntricked in to opening a specially crafted website, an attacker could \npotentially exploit these to cause a denial of service, obtain sensitive \ninformation across origins, bypass security restrictions, conduct phishing \nattacks, conduct cross-site scripting (XSS) attacks, bypass Content \nSecurity Policy (CSP) restrictions, conduct DNS rebinding attacks, or \nexecute arbitrary code.\n", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-11-18T00:00:00", "type": "ubuntu", "title": "Firefox vulnerabilities", "bulletinFamily": "unix", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-11-18T00:00:00", "id": "USN-4637-1", "href": "https://ubuntu.com/security/notices/USN-4637-1", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-26T15:30:51", "description": "## Releases\n\n * Ubuntu 16.04 ESM\n\n## Packages\n\n * firefox \\- Mozilla Open Source web browser\n\nUSN-4637-1 fixed vulnerabilities in Firefox. This update provides the \ncorresponding updates for Ubuntu 16.04 LTS.\n\nOriginal advisory details:\n\nMultiple security issues were discovered in Firefox. If a user were \ntricked in to opening a specially crafted website, an attacker could \npotentially exploit these to cause a denial of service, obtain sensitive \ninformation across origins, bypass security restrictions, conduct phishing \nattacks, conduct cross-site scripting (XSS) attacks, bypass Content \nSecurity Policy (CSP) restrictions, conduct DNS rebinding attacks, or \nexecute arbitrary code.\n", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-11-19T00:00:00", "type": "ubuntu", "title": "Firefox vulnerabilities", "bulletinFamily": "unix", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-11-19T00:00:00", "id": "USN-4637-2", "href": "https://ubuntu.com/security/notices/USN-4637-2", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "archlinux": [{"lastseen": "2021-07-28T14:33:57", "description": "Arch Linux Security Advisory ASA-202011-12\n==========================================\n\nSeverity: Critical\nDate : 2020-11-17\nCVE-ID : CVE-2020-15999 CVE-2020-16012 CVE-2020-26951 CVE-2020-26952\nCVE-2020-26953 CVE-2020-26956 CVE-2020-26958 CVE-2020-26959\nCVE-2020-26960 CVE-2020-26961 CVE-2020-26962 CVE-2020-26963\nCVE-2020-26965 CVE-2020-26967 CVE-2020-26968 CVE-2020-26969\nPackage : firefox\nType : multiple issues\nRemote : Yes\nLink : https://security.archlinux.org/AVG-1279\n\nSummary\n=======\n\nThe package firefox before version 83.0-1 is vulnerable to multiple\nissues including arbitrary code execution, access restriction bypass,\ncontent spoofing, cross-site scripting, information disclosure,\ninsufficient validation, denial of service and incorrect calculation.\n\nResolution\n==========\n\nUpgrade to 83.0-1.\n\n# pacman -Syu \"firefox>=83.0-1\"\n\nThe problems have been fixed upstream in version 83.0.\n\nWorkaround\n==========\n\nNone.\n\nDescription\n===========\n\n- CVE-2020-15999 (arbitrary code execution)\n\nA heap buffer overflow has been found in freetype2 before 2.10.4.\nMalformed TTF files with PNG sbit glyphs can cause a heap buffer\noverflow in Load_SBit_Png as libpng uses the original 32-bit values,\nwhich are saved in png_struct. If the original width and/or height are\ngreater than 65535, the allocated buffer won't be able to fit the\nbitmap.\n\n- CVE-2020-16012 (information disclosure)\n\nAn information disclosure issue has been found in Firefox before 83.0\nand chromium before 87.0.4280.66. When drawing a transparent image on\ntop of an unknown cross-origin image, the Skia library drawImage\nfunction took a variable amount of time depending on the content of the\nunderlying image. This resulted in potential cross-origin information\nexposure of image content through timing side-channel attacks.\n\n- CVE-2020-26951 (access restriction bypass)\n\nA parsing and event loading mismatch has been found in Firefox's SVG\ncode before 83.0 and could have allowed load events to fire, even after\nsanitization. An attacker already capable of exploiting an XSS\nvulnerability in privileged internal pages could have used this attack\nto bypass the built-in sanitizer.\n\n- CVE-2020-26952 (arbitrary code execution)\n\nA security issue has been found in Firefox before 83.0 where incorrect\nbookkeeping of functions inlined during JIT compilation could have led\nto memory corruption and a potentially exploitable crash when handling\nout-of-memory errors.\n\n- CVE-2020-26953 (content spoofing)\n\nA security issue has been found in Firefox before 83.0 where it was\npossible to cause the browser to enter fullscreen mode without\ndisplaying the security UI; thus making it possible to attempt a\nphishing attack or otherwise confuse the user.\n\n- CVE-2020-26956 (cross-site scripting)\n\nA security issue has been found in Firefox before 83.0 where, in some\ncases, removing HTML elements during sanitization would keep existing\nSVG event handlers and therefore lead to XSS.\n\n- CVE-2020-26958 (access restriction bypass)\n\nFirefox before 83.0 did not block execution of scripts with incorrect\nMIME types when the response was intercepted and cached through a\nServiceWorker. This could lead to a cross-site script inclusion\nvulnerability, or a Content Security Policy bypass.\n\n- CVE-2020-26959 (arbitrary code execution)\n\nA security issue has been found in Firefox before 83.0 where, during\nbrowser shutdown, reference decrementing could have occurred on a\npreviously freed object, resulting in a use-after-free, memory\ncorruption, and a potentially exploitable crash.\n\n- CVE-2020-26960 (arbitrary code execution)\n\nA security issue has been found in Firefox before 83.0 where, if the\nCompact() method was called on an nsTArray, the array could have been\nreallocated without updating other pointers, leading to a potential\nuse-after-free and exploitable crash.\n\n- CVE-2020-26961 (insufficient validation)\n\nA security issue has been found in Firefox before 83.0 where, when DNS\nover HTTPS is in use, it intentionally filters RFC1918 and related IP\nranges from the responses as these do not make sense coming from a DoH\nresolver. However when an IPv4 address was mapped through IPv6, these\naddresses were erroneously let through, leading to a potential DNS\nRebinding attack.\n\n- CVE-2020-26962 (access restriction bypass)\n\nA security issue has been found in Firefox before 83.0, where cross-\norigin iframes that contained a login form could have been recognized\nby the login autofill service, and populated. This could have been used\nin clickjacking attacks, as well as be read across partitions in\ndynamic first party isolation.\n\n- CVE-2020-26963 (denial of service)\n\nA denial of service issue has been found in Firefox before 83.0, where\nrepeated calls to the history and location interfaces could have been\nused to hang the browser. This was addressed by introducing rate-\nlimiting to these API calls.\n\n- CVE-2020-26965 (information disclosure)\n\nAn information disclosure issue has been found in Firefox before 83.0.\nSome websites have a feature \"Show Password\" where clicking a button\nwill change a password field into a textbox field, revealing the typed\npassword. If, when using a software keyboard that remembers user input,\na user typed their password and used that feature, the type of the\npassword field was changed, resulting in a keyboard layout change and\nthe possibility for the software keyboard to remember the typed\npassword.\n\n- CVE-2020-26967 (incorrect calculation)\n\nA security issue has been found in Firefox before 83.0 where, when\nlistening for page changes with a Mutation Observer, a malicious web\npage could confuse Firefox Screenshots into interacting with elements\nother than those that it injected into the page. This would lead to\ninternal errors and unexpected behavior in the Screenshots code.\n\n- CVE-2020-26968 (arbitrary code execution)\n\nSeveral memory safety issues have been found in Firefox before 83.0 and\nFirefox ESR before 78.4. Some of these bugs showed evidence of memory\ncorruption and Mozilla presumes that with enough effort some of these\ncould have been exploited to run arbitrary code.\n\n- CVE-2020-26969 (arbitrary code execution)\n\nSeveral memory safety issues have been found in Firefox before 83.0.\nSome of these bugs showed evidence of memory corruption and Mozilla\npresumes that with enough effort some of these could have been\nexploited to run arbitrary code.\n\nImpact\n======\n\nA remote attacker might be able to access sensitive information, bypass\nsecurity measures, trick a user into performing unwanted actions, crash\nthe browser or execute arbitrary code.\n\nReferences\n==========\n\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/\nhttp://git.savannah.nongnu.org/cgit/freetype/freetype2.git/commit/?id=a3bab162b2ae616074c8877a04556932998aeacd\nhttps://savannah.nongnu.org/bugs/?59308\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-16012\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1642028\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26951\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1667113\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26952\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1667685\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26953\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1656741\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26956\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26958\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1669355\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26959\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1669466\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26960\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1670358\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26961\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1672528\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26962\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=610997\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26963\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1314912\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26965\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1661617\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26967\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1665820\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26968\nhttps://bugzilla.mozilla.org/buglist.cgi?bug_id=1551615%2C1607762%2C1656697%2C1657739%2C1660236%2C1667912%2C1671479%2C1671923\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26969\nhttps://bugzilla.mozilla.org/buglist.cgi?bug_id=1623920%2C1651705%2C1667872%2C1668876\nhttps://security.archlinux.org/CVE-2020-15999\nhttps://security.archlinux.org/CVE-2020-16012\nhttps://security.archlinux.org/CVE-2020-26951\nhttps://security.archlinux.org/CVE-2020-26952\nhttps://security.archlinux.org/CVE-2020-26953\nhttps://security.archlinux.org/CVE-2020-26956\nhttps://security.archlinux.org/CVE-2020-26958\nhttps://security.archlinux.org/CVE-2020-26959\nhttps://security.archlinux.org/CVE-2020-26960\nhttps://security.archlinux.org/CVE-2020-26961\nhttps://security.archlinux.org/CVE-2020-26962\nhttps://security.archlinux.org/CVE-2020-26963\nhttps://security.archlinux.org/CVE-2020-26965\nhttps://security.archlinux.org/CVE-2020-26967\nhttps://security.archlinux.org/CVE-2020-26968\nhttps://security.archlinux.org/CVE-2020-26969", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 8.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-11-17T00:00:00", "type": "archlinux", "title": "[ASA-202011-12] firefox: multiple issues", "bulletinFamily": "unix", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-15999", "CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-11-17T00:00:00", "id": "ASA-202011-12", "href": "https://security.archlinux.org/ASA-202011-12", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "mozilla": [{"lastseen": "2021-12-29T14:11:17", "description": "A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer.\nIncorrect bookkeeping of functions inlined during JIT compilation could have led to memory corruption and a potentially exploitable crash when handling out-of-memory errors.\nWhen drawing a transparent image on top of an unknown cross-origin image, the Skia library drawImage function took a variable amount of time depending on the content of the underlying image. This resulted in potential cross-origin information exposure of image content through timing side-channel attacks.\nIt was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user.\nWhen accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be used to gain fullscreen access for UI spoofing and could also lead to cross-origin attacks on targeted websites.Note: This issue only affected Firefox for Android. Other operating systems are unaffected.\nWhen a user downloaded a file in Firefox for Android, if a cookie is set, it would have been re-sent during a subsequent file download operation on the same domain, regardless of whether the original and subsequent request were in private and non-private browsing modes.Note: This issue only affected Firefox for Android. Other operating systems are unaffected.\nIn some cases, removing HTML elements during sanitization would keep existing SVG event handlers and therefore lead to XSS.\nOneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations.Note: This issue only affected Firefox for Android. Other operating systems are unaffected.\nFirefox did not block execution of scripts with incorrect MIME types when the response was intercepted and cached through a ServiceWorker. This could lead to a cross-site script inclusion vulnerability, or a Content Security Policy bypass.\nDuring browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash.\nIf the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash.\nIn Freetype, if PNG images were embedded into fonts, the Load_SBit_Png function contained an integer overflow that led to a heap buffer overflow, memory corruption, and an exploitable crash.Note: While Project Zero did discover instances of this vulnerability being exploited in the wild against Chrome, in Firefox this vulnerability is only triggerable if a rarely-used, hidden preference is toggled, and only affected Linux and Android operating systems. Other operating systems are unaffected; and Linux and Android are unaffected in the default configuration.\nWhen DNS over HTTPS is in use, it intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming from a DoH resolver. However when an IPv4 address was mapped through IPv6, these addresses were erroneously let through, leading to a potential DNS Rebinding attack.\nCross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation.\nRepeated calls to the history and location interfaces could have been used to hang the browser. This was addressed by introducing rate-limiting to these API calls.\nIf the Remote Debugging via USB feature was enabled in Firefox for Android on an Android version prior to Android 6.0, untrusted apps could have connected to the feature and operated with the privileges of the browser to read and interact with web content. The feature was implemented as a unix domain socket, protected by the Android SELinux policy; however, SELinux was not enforced for versions prior to 6.0. This was fixed by removing the Remote Debugging via USB feature from affected devices.Note: This issue only affected Firefox for Android. Other operating systems are unaffected.\nSome websites have a feature \"Show Password\" where clicking a button will change a password field into a textbook field, revealing the typed password. If, when using a software keyboard that remembers user input, a user typed their password and used that feature, the type of the password field was changed, resulting in a keyboard layout change and the possibility for the software keyboard to remember the typed password.\nSearching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting of that string; resulting in an information leak.Note: This issue only affected Windows operating systems. Other operating systems are unaffected.\nWhen listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page. This would lead to internal errors and unexpected behavior in the Screenshots code.\nMozilla developers Randell Jesup, Christian Holler, Jason Kratzer, Byron Campen, and Steve Fink reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.\nMozilla developers Tyson Smith, Aaron Klotz, David Major and Jason Kratzer reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.\n", "edition": 1, "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 8.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-11-17T00:00:00", "type": "mozilla", "title": "Security Vulnerabilities fixed in Firefox 83 \u2014 Mozilla", "bulletinFamily": "software", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-16012", "CVE-2020-26954", "CVE-2020-26957", "CVE-2020-26965", "CVE-2020-26951", "CVE-2020-26964", "CVE-2020-15999", "CVE-2020-26959", "CVE-2020-26952", "CVE-2020-26969", "CVE-2020-26963", "CVE-2020-26956", "CVE-2020-26968", "CVE-2020-26955", "CVE-2020-26967", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26953", "CVE-2020-26960", "CVE-2020-26966", "CVE-2020-26958"], "modified": "2020-11-17T00:00:00", "id": "MFSA2020-50", "href": "https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "kaspersky": [{"lastseen": "2021-08-18T10:59:36", "description": "### *Detect date*:\n11/17/2020\n\n### *Severity*:\nWarning\n\n### *Description*:\nMultiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges, perform cross-site scripting attack, spoof user interface, execute arbitrary code, bypass security restrictions.\n\n### *Exploitation*:\nMalware exists for this vulnerability. Usually such malware is classified as Exploit. [More details](<https://threats.kaspersky.com/en/class/Exploit/>).\n\n### *Affected products*:\nMozilla Firefox earlier than 83\n\n### *Solution*:\nUpdate to the latest version \n[Download Firefox](<https://www.mozilla.org/en-US/firefox/new/>)\n\n### *Original advisories*:\n[MFSA2020-50](<https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Mozilla Firefox](<https://threats.kaspersky.com/en/product/Mozilla-Firefox/>)\n\n### *CVE-IDS*:\n[CVE-2020-15999](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999>)4.3Warning \n[CVE-2020-16012](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012>)4.3Warning \n[CVE-2020-26964](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26964>)4.0Warning \n[CVE-2020-26951](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951>)4.3Warning \n[CVE-2020-26953](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953>)4.3Warning \n[CVE-2020-26956](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956>)4.3Warning \n[CVE-2020-26962](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26962>)4.3Warning \n[CVE-2020-26968](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968>)9.3Critical \n[CVE-2020-26963](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26963>)4.3Warning \n[CVE-2020-26961](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961>)4.3Warning \n[CVE-2020-26967](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26967>)4.3Warning \n[CVE-2020-26957](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26957>)4.3Warning \n[CVE-2020-26954](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26954>)4.3Warning \n[CVE-2020-26969](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26969>)9.3Critical \n[CVE-2020-26960](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960>)9.3Critical \n[CVE-2020-26965](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965>)4.3Warning \n[CVE-2020-26959](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959>)6.8High \n[CVE-2020-26952](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26952>)9.3Critical \n[CVE-2020-26966](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26966>)4.3Warning \n[CVE-2020-26958](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958>)4.3Warning \n[CVE-2020-26955](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26955>)4.3Warning", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 8.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-11-17T00:00:00", "type": "kaspersky", "title": "KLA12010 Multiple vulnerabilities in Mozilla Firefox", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-15999", "CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26954", "CVE-2020-26955", "CVE-2020-26956", "CVE-2020-26957", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26964", "CVE-2020-26965", "CVE-2020-26966", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-11-30T00:00:00", "id": "KLA12010", "href": "https://threats.kaspersky.com/en/vulnerability/KLA12010/", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2021-08-18T10:59:34", "description": "### *Detect date*:\n11/17/2020\n\n### *Severity*:\nWarning\n\n### *Description*:\nMultiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to gain privileges, perform cross-site scripting attack, obtain sensitive information, cause denial of service, spoof user interface, execute arbitrary code, bypass security restrictions.\n\n### *Exploitation*:\nMalware exists for this vulnerability. Usually such malware is classified as Exploit. [More details](<https://threats.kaspersky.com/en/class/Exploit/>).\n\n### *Affected products*:\nMozilla Firefox ESR earlier than 78.5\n\n### *Solution*:\nUpdate to the latest version \n[Download Firefox ESR](<https://www.mozilla.org/en-US/firefox/all/#product-desktop-esr>)\n\n### *Original advisories*:\n[MFSA2020-51](<https://www.mozilla.org/en-US/security/advisories/mfsa2020-51/>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Mozilla Firefox ESR](<https://threats.kaspersky.com/en/product/Mozilla-Firefox-ESR/>)\n\n### *CVE-IDS*:\n[CVE-2020-15999](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999>)4.3Warning \n[CVE-2020-16012](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012>)4.3Warning \n[CVE-2020-26964](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26964>)4.0Warning \n[CVE-2020-26951](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951>)4.3Warning \n[CVE-2020-26953](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953>)4.3Warning \n[CVE-2020-26956](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956>)4.3Warning \n[CVE-2020-26962](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26962>)4.3Warning \n[CVE-2020-26968](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968>)9.3Critical \n[CVE-2020-26963](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26963>)4.3Warning \n[CVE-2020-26961](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961>)4.3Warning \n[CVE-2020-26967](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26967>)4.3Warning \n[CVE-2020-26957](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26957>)4.3Warning \n[CVE-2020-26954](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26954>)4.3Warning \n[CVE-2020-26969](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26969>)9.3Critical \n[CVE-2020-26960](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960>)9.3Critical \n[CVE-2020-26965](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965>)4.3Warning \n[CVE-2020-26959](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959>)6.8High \n[CVE-2020-26952](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26952>)9.3Critical \n[CVE-2020-26966](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26966>)4.3Warning \n[CVE-2020-26958](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958>)4.3Warning \n[CVE-2020-26955](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26955>)4.3Warning", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 8.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-11-17T00:00:00", "type": "kaspersky", "title": "KLA12011 Multiple vulnerabilities in Mozilla Firefox ESR", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-15999", "CVE-2020-16012", "CVE-2020-26951", "CVE-2020-26952", "CVE-2020-26953", "CVE-2020-26954", "CVE-2020-26955", "CVE-2020-26956", "CVE-2020-26957", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960", "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26964", "CVE-2020-26965", "CVE-2020-26966", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969"], "modified": "2020-11-30T00:00:00", "id": "KLA12011", "href": "https://threats.kaspersky.com/en/vulnerability/KLA12011/", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}]}