openSUSE Security Update: Mozilla Firefox and others: Update to Firefox 20.0 release
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2013:0630-1
Rating:             important
References:         #813026 
Cross-References:   CVE-2013-0788 CVE-2013-0789 CVE-2013-0791
                    CVE-2013-0792 CVE-2013-0793 CVE-2013-0794
                    CVE-2013-0795 CVE-2013-0796 CVE-2013-0800
                    CVE-2013-1620
Affected Products:
                    openSUSE 12.3
                    openSUSE 12.2
                    openSUSE 12.1
______________________________________________________________________________

   An update that fixes 10 vulnerabilities is now available.

Description:


   The Mozilla suite received security and bugfix updates:

   Mozilla Firefox was updated to version 20.0. Mozilla
   Thunderbird was updated to version 17.0.5. Mozilla
   Seamonkey was updated to version 17.0.5. Mozilla XULRunner
   was updated to version 17.0.5. mozilla-nss was updated to
   version 3.14.3. mozilla-nspr was updated to version 4.9.6.

   mozilla-nspr was updated to version 4.9.6:
   * aarch64 support
   * added PL_SizeOfArenaPoolExcludingPool function
   (bmo#807883)
   * Auto detect android api version for x86 (bmo#782214)
   * Initialize Windows CRITICAL_SECTIONs without debug info
   and with nonzero spin count (bmo#812085) Previous update
   to version 4.9.5
   * bmo#634793: define NSPR's exact-width integer types
   PRInt{N} and PRUint{N} types to match the 
   exact-width integer types int{N}_t and uint{N}_t.
   * bmo#782815: passing 'int *' to parameter of type
   'unsigned int *' in setsockopt().
   * bmo#822932: Port bmo#802527 (NDK r8b support for x86) to
   NSPR.
   * bmo#824742: NSPR shouldn't require librt on Android.
   * bmo#831793: data race on lib->refCount in
   PR_UnloadLibrary.

   mozilla-nss was updated to version 3.14.3:
   * disable tests with expired certificates
   * add SEC_PKCS7VerifyDetachedSignatureAtTime using patch
   from mozilla tree to fulfill Firefox 21 requirements

   * No new major functionality is introduced in this release.
   This release is a patch release to address CVE-2013-1620
   (bmo#822365)
   * "certutil -a" was not correctly producing ASCII output as
   requested. (bmo#840714)
   * NSS 3.14.2 broke compilation with older versions of
   sqlite that lacked the SQLITE_FCNTL_TEMPFILENAME file
   control. NSS 3.14.3 now properly compiles when used with
   older versions of sqlite (bmo#837799) - remove
   system-sqlite.patch
   * add arm aarch64 support

   * added system-sqlite.patch (bmo#837799)
   * do not depend on latest sqlite just for a #define
   * enable system sqlite usage again

   * update to 3.14.2
   * required for Firefox >= 20
   * removed obsolete nssckbi update patch
   * MFSA 2013-40/CVE-2013-0791 (bmo#629816) Out-of-bounds
   array read in CERT_DecodeCertPackage
   * disable system sqlite usage since we depend on 3.7.15
   which is not provided in any openSUSE distribution
   * add nss-sqlitename.patch to avoid any name clash

   Changes in MozillaFirefox:
   - update to Firefox 20.0 (bnc#813026)
   * requires NSPR 4.9.5 and NSS 3.14.3
   * MFSA 2013-30/CVE-2013-0788/CVE-2013-0789 Miscellaneous
   memory safety hazards
   * MFSA 2013-31/CVE-2013-0800 (bmo#825721) Out-of-bounds
   write in Cairo library
   * MFSA 2013-35/CVE-2013-0796 (bmo#827106) WebGL crash
   with Mesa graphics driver on Linux
   * MFSA 2013-36/CVE-2013-0795 (bmo#825697) Bypass of SOW
   protections allows cloning of protected nodes
   * MFSA 2013-37/CVE-2013-0794 (bmo#626775) Bypass of
   tab-modal dialog origin disclosure
   * MFSA 2013-38/CVE-2013-0793 (bmo#803870) Cross-site
   scripting (XSS) using timed history navigations
   * MFSA 2013-39/CVE-2013-0792 (bmo#722831) Memory
   corruption while rendering grayscale PNG images
   - use GStreamer 1.0 starting with 12.3
   (mozilla-gstreamer-1.patch)
   - build fixes for armv7hl:
   * disable debug build as armv7hl does not have enough
   memory
   * disable webrtc on armv7hl as it is non-compiling

   Changes in MozillaThunderbird:
   - update to Thunderbird 17.0.5 (bnc#813026)
   * requires NSPR 4.9.5 and NSS 3.14.3
   * MFSA 2013-30/CVE-2013-0788/CVE-2013-0789 Miscellaneous
   memory safety hazards
   * MFSA 2013-31/CVE-2013-0800 (bmo#825721) Out-of-bounds
   write in Cairo library
   * MFSA 2013-35/CVE-2013-0796 (bmo#827106) WebGL crash
   with Mesa graphics driver on Linux
   * MFSA 2013-36/CVE-2013-0795 (bmo#825697) Bypass of SOW
   protections allows cloning of protected nodes
   * MFSA 2013-38/CVE-2013-0793 (bmo#803870) Cross-site
   scripting (XSS) using timed history navigations

   Changes in seamonkey:
   - update to SeaMonkey 2.17 (bnc#813026)
   * requires NSPR 4.9.5 and NSS 3.14.3
   * MFSA 2013-30/CVE-2013-0788/CVE-2013-0789 Miscellaneous
   memory safety hazards
   * MFSA 2013-31/CVE-2013-0800 (bmo#825721) Out-of-bounds
   write in Cairo library
   * MFSA 2013-35/CVE-2013-0796 (bmo#827106) WebGL crash
   with Mesa graphics driver on Linux
   * MFSA 2013-36/CVE-2013-0795 (bmo#825697) Bypass of SOW
   protections allows cloning of protected nodes
   * MFSA 2013-37/CVE-2013-0794 (bmo#626775) Bypass of
   tab-modal dialog origin disclosure
   * MFSA 2013-38/CVE-2013-0793 (bmo#803870) Cross-site
   scripting (XSS) using timed history navigations
   * MFSA 2013-39/CVE-2013-0792 (bmo#722831) Memory
   corruption while rendering grayscale PNG images
   - use GStreamer 1.0 starting with 12.3
   (mozilla-gstreamer-1.patch)

   Changes in xulrunner:
   - update to 17.0.5esr (bnc#813026)
   * requires NSPR 4.9.5 and NSS 3.14.3
   * MFSA 2013-30/CVE-2013-0788 Miscellaneous memory safety
   hazards
   * MFSA 2013-31/CVE-2013-0800 (bmo#825721) Out-of-bounds
   write in Cairo library
   * MFSA 2013-35/CVE-2013-0796 (bmo#827106) WebGL crash
   with Mesa graphics driver on Linux
   * MFSA 2013-36/CVE-2013-0795 (bmo#825697) Bypass of SOW
   protections allows cloning of protected nodes
   * MFSA 2013-37/CVE-2013-0794 (bmo#626775) Bypass of
   tab-modal dialog origin disclosure
   * MFSA 2013-38/CVE-2013-0793 (bmo#803870) Cross-site
   scripting (XSS) using timed history navigations


Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 12.3:

      zypper in -t patch openSUSE-2013-309

   - openSUSE 12.2:

      zypper in -t patch openSUSE-2013-309

   - openSUSE 12.1:

      zypper in -t patch openSUSE-2013-309

   To bring your system up-to-date, use "zypper patch".


Package List:

   - openSUSE 12.3 (i586 x86_64):

      MozillaFirefox-20.0-1.8.3
      MozillaFirefox-branding-upstream-20.0-1.8.3
      MozillaFirefox-buildsymbols-20.0-1.8.3
      MozillaFirefox-debuginfo-20.0-1.8.3
      MozillaFirefox-debugsource-20.0-1.8.3
      MozillaFirefox-devel-20.0-1.8.3
      MozillaFirefox-translations-common-20.0-1.8.3
      MozillaFirefox-translations-other-20.0-1.8.3
      MozillaThunderbird-17.0.5-61.9.4
      MozillaThunderbird-buildsymbols-17.0.5-61.9.4
      MozillaThunderbird-debuginfo-17.0.5-61.9.4
      MozillaThunderbird-debugsource-17.0.5-61.9.4
      MozillaThunderbird-devel-17.0.5-61.9.4
      MozillaThunderbird-devel-debuginfo-17.0.5-61.9.4
      MozillaThunderbird-translations-common-17.0.5-61.9.4
      MozillaThunderbird-translations-other-17.0.5-61.9.4
      enigmail-1.5.1+17.0.5-61.9.4
      enigmail-debuginfo-1.5.1+17.0.5-61.9.4
      libfreebl3-3.14.3-1.8.1
      libfreebl3-debuginfo-3.14.3-1.8.1
      libsoftokn3-3.14.3-1.8.1
      libsoftokn3-debuginfo-3.14.3-1.8.1
      mozilla-js-17.0.5-1.8.3
      mozilla-js-debuginfo-17.0.5-1.8.3
      mozilla-nspr-4.9.6-1.4.1
      mozilla-nspr-debuginfo-4.9.6-1.4.1
      mozilla-nspr-debugsource-4.9.6-1.4.1
      mozilla-nspr-devel-4.9.6-1.4.1
      mozilla-nss-3.14.3-1.8.1
      mozilla-nss-certs-3.14.3-1.8.1
      mozilla-nss-certs-debuginfo-3.14.3-1.8.1
      mozilla-nss-debuginfo-3.14.3-1.8.1
      mozilla-nss-debugsource-3.14.3-1.8.1
      mozilla-nss-devel-3.14.3-1.8.1
      mozilla-nss-sysinit-3.14.3-1.8.1
      mozilla-nss-sysinit-debuginfo-3.14.3-1.8.1
      mozilla-nss-tools-3.14.3-1.8.1
      mozilla-nss-tools-debuginfo-3.14.3-1.8.1
      xulrunner-17.0.5-1.8.3
      xulrunner-buildsymbols-17.0.5-1.8.3
      xulrunner-debuginfo-17.0.5-1.8.3
      xulrunner-debugsource-17.0.5-1.8.3
      xulrunner-devel-17.0.5-1.8.3
      xulrunner-devel-debuginfo-17.0.5-1.8.3

   - openSUSE 12.3 (x86_64):

      libfreebl3-32bit-3.14.3-1.8.1
      libfreebl3-debuginfo-32bit-3.14.3-1.8.1
      libsoftokn3-32bit-3.14.3-1.8.1
      libsoftokn3-debuginfo-32bit-3.14.3-1.8.1
      mozilla-js-32bit-17.0.5-1.8.3
      mozilla-js-debuginfo-32bit-17.0.5-1.8.3
      mozilla-nspr-32bit-4.9.6-1.4.1
      mozilla-nspr-debuginfo-32bit-4.9.6-1.4.1
      mozilla-nss-32bit-3.14.3-1.8.1
      mozilla-nss-certs-32bit-3.14.3-1.8.1
      mozilla-nss-certs-debuginfo-32bit-3.14.3-1.8.1
      mozilla-nss-debuginfo-32bit-3.14.3-1.8.1
      mozilla-nss-sysinit-32bit-3.14.3-1.8.1
      mozilla-nss-sysinit-debuginfo-32bit-3.14.3-1.8.1
      xulrunner-32bit-17.0.5-1.8.3
      xulrunner-debuginfo-32bit-17.0.5-1.8.3

   - openSUSE 12.2 (i586 x86_64):

      MozillaFirefox-20.0-2.41.3
      MozillaFirefox-branding-upstream-20.0-2.41.3
      MozillaFirefox-buildsymbols-20.0-2.41.3
      MozillaFirefox-debuginfo-20.0-2.41.3
      MozillaFirefox-debugsource-20.0-2.41.3
      MozillaFirefox-devel-20.0-2.41.3
      MozillaFirefox-translations-common-20.0-2.41.3
      MozillaFirefox-translations-other-20.0-2.41.3
      MozillaThunderbird-17.0.5-49.39.3
      MozillaThunderbird-buildsymbols-17.0.5-49.39.3
      MozillaThunderbird-debuginfo-17.0.5-49.39.3
      MozillaThunderbird-debugsource-17.0.5-49.39.3
      MozillaThunderbird-devel-17.0.5-49.39.3
      MozillaThunderbird-devel-debuginfo-17.0.5-49.39.3
      MozillaThunderbird-translations-common-17.0.5-49.39.3
      MozillaThunderbird-translations-other-17.0.5-49.39.3
      enigmail-1.5.1+17.0.5-49.39.3
      enigmail-debuginfo-1.5.1+17.0.5-49.39.3
      libfreebl3-3.14.3-2.19.2
      libfreebl3-debuginfo-3.14.3-2.19.2
      libsoftokn3-3.14.3-2.19.2
      libsoftokn3-debuginfo-3.14.3-2.19.2
      mozilla-js-17.0.5-2.38.2
      mozilla-js-debuginfo-17.0.5-2.38.2
      mozilla-nspr-4.9.6-1.12.1
      mozilla-nspr-debuginfo-4.9.6-1.12.1
      mozilla-nspr-debugsource-4.9.6-1.12.1
      mozilla-nspr-devel-4.9.6-1.12.1
      mozilla-nss-3.14.3-2.19.2
      mozilla-nss-certs-3.14.3-2.19.2
      mozilla-nss-certs-debuginfo-3.14.3-2.19.2
      mozilla-nss-debuginfo-3.14.3-2.19.2
      mozilla-nss-debugsource-3.14.3-2.19.2
      mozilla-nss-devel-3.14.3-2.19.2
      mozilla-nss-sysinit-3.14.3-2.19.2
      mozilla-nss-sysinit-debuginfo-3.14.3-2.19.2
      mozilla-nss-tools-3.14.3-2.19.2
      mozilla-nss-tools-debuginfo-3.14.3-2.19.2
      xulrunner-17.0.5-2.38.2
      xulrunner-buildsymbols-17.0.5-2.38.2
      xulrunner-debuginfo-17.0.5-2.38.2
      xulrunner-debugsource-17.0.5-2.38.2
      xulrunner-devel-17.0.5-2.38.2
      xulrunner-devel-debuginfo-17.0.5-2.38.2

   - openSUSE 12.2 (x86_64):

      libfreebl3-32bit-3.14.3-2.19.2
      libfreebl3-debuginfo-32bit-3.14.3-2.19.2
      libsoftokn3-32bit-3.14.3-2.19.2
      libsoftokn3-debuginfo-32bit-3.14.3-2.19.2
      mozilla-js-32bit-17.0.5-2.38.2
      mozilla-js-debuginfo-32bit-17.0.5-2.38.2
      mozilla-nspr-32bit-4.9.6-1.12.1
      mozilla-nspr-debuginfo-32bit-4.9.6-1.12.1
      mozilla-nss-32bit-3.14.3-2.19.2
      mozilla-nss-certs-32bit-3.14.3-2.19.2
      mozilla-nss-certs-debuginfo-32bit-3.14.3-2.19.2
      mozilla-nss-debuginfo-32bit-3.14.3-2.19.2
      mozilla-nss-sysinit-32bit-3.14.3-2.19.2
      mozilla-nss-sysinit-debuginfo-32bit-3.14.3-2.19.2
      xulrunner-32bit-17.0.5-2.38.2
      xulrunner-debuginfo-32bit-17.0.5-2.38.2

   - openSUSE 12.1 (i586 x86_64):

      MozillaFirefox-20.0-2.70.3
      MozillaFirefox-branding-upstream-20.0-2.70.3
      MozillaFirefox-buildsymbols-20.0-2.70.3
      MozillaFirefox-debuginfo-20.0-2.70.3
      MozillaFirefox-debugsource-20.0-2.70.3
      MozillaFirefox-devel-20.0-2.70.3
      MozillaFirefox-translations-common-20.0-2.70.3
      MozillaFirefox-translations-other-20.0-2.70.3
      MozillaThunderbird-17.0.5-33.59.3
      MozillaThunderbird-buildsymbols-17.0.5-33.59.3
      MozillaThunderbird-debuginfo-17.0.5-33.59.3
      MozillaThunderbird-debugsource-17.0.5-33.59.3
      MozillaThunderbird-devel-17.0.5-33.59.3
      MozillaThunderbird-devel-debuginfo-17.0.5-33.59.3
      MozillaThunderbird-translations-common-17.0.5-33.59.3
      MozillaThunderbird-translations-other-17.0.5-33.59.3
      enigmail-1.5.1+17.0.5-33.59.3
      enigmail-debuginfo-1.5.1+17.0.5-33.59.3
      libfreebl3-3.14.3-9.29.2
      libfreebl3-debuginfo-3.14.3-9.29.2
      libsoftokn3-3.14.3-9.29.2
      libsoftokn3-debuginfo-3.14.3-9.29.2
      mozilla-js-17.0.5-2.65.2
      mozilla-js-debuginfo-17.0.5-2.65.2
      mozilla-nspr-4.9.6-3.15.1
      mozilla-nspr-debuginfo-4.9.6-3.15.1
      mozilla-nspr-debugsource-4.9.6-3.15.1
      mozilla-nspr-devel-4.9.6-3.15.1
      mozilla-nss-3.14.3-9.29.2
      mozilla-nss-certs-3.14.3-9.29.2
      mozilla-nss-certs-debuginfo-3.14.3-9.29.2
      mozilla-nss-debuginfo-3.14.3-9.29.2
      mozilla-nss-debugsource-3.14.3-9.29.2
      mozilla-nss-devel-3.14.3-9.29.2
      mozilla-nss-sysinit-3.14.3-9.29.2
      mozilla-nss-sysinit-debuginfo-3.14.3-9.29.2
      mozilla-nss-tools-3.14.3-9.29.2
      mozilla-nss-tools-debuginfo-3.14.3-9.29.2
      seamonkey-2.17-2.61.2
      seamonkey-debuginfo-2.17-2.61.2
      seamonkey-debugsource-2.17-2.61.2
      seamonkey-dom-inspector-2.17-2.61.2
      seamonkey-irc-2.17-2.61.2
      seamonkey-translations-common-2.17-2.61.2
      seamonkey-translations-other-2.17-2.61.2
      seamonkey-venkman-2.17-2.61.2
      xulrunner-17.0.5-2.65.2
      xulrunner-buildsymbols-17.0.5-2.65.2
      xulrunner-debuginfo-17.0.5-2.65.2
      xulrunner-debugsource-17.0.5-2.65.2
      xulrunner-devel-17.0.5-2.65.2
      xulrunner-devel-debuginfo-17.0.5-2.65.2

   - openSUSE 12.1 (x86_64):

      libfreebl3-32bit-3.14.3-9.29.2
      libfreebl3-debuginfo-32bit-3.14.3-9.29.2
      libsoftokn3-32bit-3.14.3-9.29.2
      libsoftokn3-debuginfo-32bit-3.14.3-9.29.2
      mozilla-js-32bit-17.0.5-2.65.2
      mozilla-js-debuginfo-32bit-17.0.5-2.65.2
      mozilla-nspr-32bit-4.9.6-3.15.1
      mozilla-nspr-debuginfo-32bit-4.9.6-3.15.1
      mozilla-nss-32bit-3.14.3-9.29.2
      mozilla-nss-certs-32bit-3.14.3-9.29.2
      mozilla-nss-certs-debuginfo-32bit-3.14.3-9.29.2
      mozilla-nss-debuginfo-32bit-3.14.3-9.29.2
      mozilla-nss-sysinit-32bit-3.14.3-9.29.2
      mozilla-nss-sysinit-debuginfo-32bit-3.14.3-9.29.2
      xulrunner-32bit-17.0.5-2.65.2
      xulrunner-debuginfo-32bit-17.0.5-2.65.2

   - openSUSE 12.1 (ia64):

      libfreebl3-debuginfo-x86-3.14.3-9.29.2
      libfreebl3-x86-3.14.3-9.29.2
      libsoftokn3-debuginfo-x86-3.14.3-9.29.2
      libsoftokn3-x86-3.14.3-9.29.2
      mozilla-js-debuginfo-x86-17.0.5-2.65.2
      mozilla-js-x86-17.0.5-2.65.2
      mozilla-nspr-debuginfo-x86-4.9.6-3.15.1
      mozilla-nspr-x86-4.9.6-3.15.1
      mozilla-nss-certs-debuginfo-x86-3.14.3-9.29.2
      mozilla-nss-certs-x86-3.14.3-9.29.2
      mozilla-nss-debuginfo-x86-3.14.3-9.29.2
      mozilla-nss-sysinit-debuginfo-x86-3.14.3-9.29.2
      mozilla-nss-sysinit-x86-3.14.3-9.29.2
      mozilla-nss-x86-3.14.3-9.29.2
      xulrunner-debuginfo-x86-17.0.5-2.65.2
      xulrunner-x86-17.0.5-2.65.2


References:

   https://www.suse.com/security/cve/CVE-2013-0788.html
   https://www.suse.com/security/cve/CVE-2013-0789.html
   https://www.suse.com/security/cve/CVE-2013-0791.html
   https://www.suse.com/security/cve/CVE-2013-0792.html
   https://www.suse.com/security/cve/CVE-2013-0793.html
   https://www.suse.com/security/cve/CVE-2013-0794.html
   https://www.suse.com/security/cve/CVE-2013-0795.html
   https://www.suse.com/security/cve/CVE-2013-0796.html
   https://www.suse.com/security/cve/CVE-2013-0800.html
   https://www.suse.com/security/cve/CVE-2013-1620.html
   https://bugzilla.novell.com/813026

openSUSE: 2013:0630-1: important: Mozilla Firefox and others

April 5, 2013
An update that fixes 10 vulnerabilities is now available

Description

The Mozilla suite received security and bugfix updates: Mozilla Firefox was updated to version 20.0. Mozilla Thunderbird was updated to version 17.0.5. Mozilla Seamonkey was updated to version 17.0.5. Mozilla XULRunner was updated to version 17.0.5. mozilla-nss was updated to version 3.14.3. mozilla-nspr was updated to version 4.9.6. mozilla-nspr was updated to version 4.9.6: * aarch64 support * added PL_SizeOfArenaPoolExcludingPool function (bmo#807883) * Auto detect android api version for x86 (bmo#782214) * Initialize Windows CRITICAL_SECTIONs without debug info and with nonzero spin count (bmo#812085) Previous update to version 4.9.5 * bmo#634793: define NSPR's exact-width integer types PRInt{N} and PRUint{N} types to match the exact-width integer types int{N}_t and uint{N}_t. * bmo#782815: passing 'int *' to parameter of type 'unsigned int *' in setsockopt(). * bmo#822932: Port bmo#802527 (NDK r8b support for x86) to ...

Read the Full Advisory

 

Patch

Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.3: zypper in -t patch openSUSE-2013-309 - openSUSE 12.2: zypper in -t patch openSUSE-2013-309 - openSUSE 12.1: zypper in -t patch openSUSE-2013-309 To bring your system up-to-date, use "zypper patch".


Package List

- openSUSE 12.3 (i586 x86_64): MozillaFirefox-20.0-1.8.3 MozillaFirefox-branding-upstream-20.0-1.8.3 MozillaFirefox-buildsymbols-20.0-1.8.3 MozillaFirefox-debuginfo-20.0-1.8.3 MozillaFirefox-debugsource-20.0-1.8.3 MozillaFirefox-devel-20.0-1.8.3 MozillaFirefox-translations-common-20.0-1.8.3 MozillaFirefox-translations-other-20.0-1.8.3 MozillaThunderbird-17.0.5-61.9.4 MozillaThunderbird-buildsymbols-17.0.5-61.9.4 MozillaThunderbird-debuginfo-17.0.5-61.9.4 MozillaThunderbird-debugsource-17.0.5-61.9.4 MozillaThunderbird-devel-17.0.5-61.9.4 MozillaThunderbird-devel-debuginfo-17.0.5-61.9.4 MozillaThunderbird-translations-common-17.0.5-61.9.4 MozillaThunderbird-translations-other-17.0.5-61.9.4 enigmail-1.5.1+17.0.5-61.9.4 enigmail-debuginfo-1.5.1+17.0.5-61.9.4 libfreebl3-3.14.3-1.8.1 libfreebl3-debuginfo-3.14.3-1.8.1 libsoftokn3-3.14.3-1.8.1 libsoftokn3-debuginfo-3.14.3-1.8.1 mozilla-js-17.0.5-1.8.3 mozilla-js-debuginfo-17.0.5-1.8.3 mozilla-nspr-4.9.6-1.4.1 mozilla-nspr-debuginfo-4.9.6-1.4.1 mozilla-nspr-debugsource-4.9.6-1.4.1 mozilla-nspr-devel-4.9.6-1.4.1 mozilla-nss-3.14.3-1.8.1 mozilla-nss-certs-3.14.3-1.8.1 mozilla-nss-certs-debuginfo-3.14.3-1.8.1 mozilla-nss-debuginfo-3.14.3-1.8.1 mozilla-nss-debugsource-3.14.3-1.8.1 mozilla-nss-devel-3.14.3-1.8.1 mozilla-nss-sysinit-3.14.3-1.8.1 mozilla-nss-sysinit-debuginfo-3.14.3-1.8.1 mozilla-nss-tools-3.14.3-1.8.1 mozilla-nss-tools-debuginfo-3.14.3-1.8.1 xulrunner-17.0.5-1.8.3 xulrunner-buildsymbols-17.0.5-1.8.3 xulrunner-debuginfo-17.0.5-1.8.3 xulrunner-debugsource-17.0.5-1.8.3 xulrunner-devel-17.0.5-1.8.3 xulrunner-devel-debuginfo-17.0.5-1.8.3 - openSUSE 12.3 (x86_64): libfreebl3-32bit-3.14.3-1.8.1 libfreebl3-debuginfo-32bit-3.14.3-1.8.1 libsoftokn3-32bit-3.14.3-1.8.1 libsoftokn3-debuginfo-32bit-3.14.3-1.8.1 mozilla-js-32bit-17.0.5-1.8.3 mozilla-js-debuginfo-32bit-17.0.5-1.8.3 mozilla-nspr-32bit-4.9.6-1.4.1 mozilla-nspr-debuginfo-32bit-4.9.6-1.4.1 mozilla-nss-32bit-3.14.3-1.8.1 mozilla-nss-certs-32bit-3.14.3-1.8.1 mozilla-nss-certs-debuginfo-32bit-3.14.3-1.8.1 mozilla-nss-debuginfo-32bit-3.14.3-1.8.1 mozilla-nss-sysinit-32bit-3.14.3-1.8.1 mozilla-nss-sysinit-debuginfo-32bit-3.14.3-1.8.1 xulrunner-32bit-17.0.5-1.8.3 xulrunner-debuginfo-32bit-17.0.5-1.8.3 - openSUSE 12.2 (i586 x86_64): MozillaFirefox-20.0-2.41.3 MozillaFirefox-branding-upstream-20.0-2.41.3 MozillaFirefox-buildsymbols-20.0-2.41.3 MozillaFirefox-debuginfo-20.0-2.41.3 MozillaFirefox-debugsource-20.0-2.41.3 MozillaFirefox-devel-20.0-2.41.3 MozillaFirefox-translations-common-20.0-2.41.3 MozillaFirefox-translations-other-20.0-2.41.3 MozillaThunderbird-17.0.5-49.39.3 MozillaThunderbird-buildsymbols-17.0.5-49.39.3 MozillaThunderbird-debuginfo-17.0.5-49.39.3 MozillaThunderbird-debugsource-17.0.5-49.39.3 MozillaThunderbird-devel-17.0.5-49.39.3 MozillaThunderbird-devel-debuginfo-17.0.5-49.39.3 MozillaThunderbird-translations-common-17.0.5-49.39.3 MozillaThunderbird-translations-other-17.0.5-49.39.3 enigmail-1.5.1+17.0.5-49.39.3 enigmail-debuginfo-1.5.1+17.0.5-49.39.3 libfreebl3-3.14.3-2.19.2 libfreebl3-debuginfo-3.14.3-2.19.2 libsoftokn3-3.14.3-2.19.2 libsoftokn3-debuginfo-3.14.3-2.19.2 mozilla-js-17.0.5-2.38.2 mozilla-js-debuginfo-17.0.5-2.38.2 mozilla-nspr-4.9.6-1.12.1 mozilla-nspr-debuginfo-4.9.6-1.12.1 mozilla-nspr-debugsource-4.9.6-1.12.1 mozilla-nspr-devel-4.9.6-1.12.1 mozilla-nss-3.14.3-2.19.2 mozilla-nss-certs-3.14.3-2.19.2 mozilla-nss-certs-debuginfo-3.14.3-2.19.2 mozilla-nss-debuginfo-3.14.3-2.19.2 mozilla-nss-debugsource-3.14.3-2.19.2 mozilla-nss-devel-3.14.3-2.19.2 mozilla-nss-sysinit-3.14.3-2.19.2 mozilla-nss-sysinit-debuginfo-3.14.3-2.19.2 mozilla-nss-tools-3.14.3-2.19.2 mozilla-nss-tools-debuginfo-3.14.3-2.19.2 xulrunner-17.0.5-2.38.2 xulrunner-buildsymbols-17.0.5-2.38.2 xulrunner-debuginfo-17.0.5-2.38.2 xulrunner-debugsource-17.0.5-2.38.2 xulrunner-devel-17.0.5-2.38.2 xulrunner-devel-debuginfo-17.0.5-2.38.2 - openSUSE 12.2 (x86_64): libfreebl3-32bit-3.14.3-2.19.2 libfreebl3-debuginfo-32bit-3.14.3-2.19.2 libsoftokn3-32bit-3.14.3-2.19.2 libsoftokn3-debuginfo-32bit-3.14.3-2.19.2 mozilla-js-32bit-17.0.5-2.38.2 mozilla-js-debuginfo-32bit-17.0.5-2.38.2 mozilla-nspr-32bit-4.9.6-1.12.1 mozilla-nspr-debuginfo-32bit-4.9.6-1.12.1 mozilla-nss-32bit-3.14.3-2.19.2 mozilla-nss-certs-32bit-3.14.3-2.19.2 mozilla-nss-certs-debuginfo-32bit-3.14.3-2.19.2 mozilla-nss-debuginfo-32bit-3.14.3-2.19.2 mozilla-nss-sysinit-32bit-3.14.3-2.19.2 mozilla-nss-sysinit-debuginfo-32bit-3.14.3-2.19.2 xulrunner-32bit-17.0.5-2.38.2 xulrunner-debuginfo-32bit-17.0.5-2.38.2 - openSUSE 12.1 (i586 x86_64): MozillaFirefox-20.0-2.70.3 MozillaFirefox-branding-upstream-20.0-2.70.3 MozillaFirefox-buildsymbols-20.0-2.70.3 MozillaFirefox-debuginfo-20.0-2.70.3 MozillaFirefox-debugsource-20.0-2.70.3 MozillaFirefox-devel-20.0-2.70.3 MozillaFirefox-translations-common-20.0-2.70.3 MozillaFirefox-translations-other-20.0-2.70.3 MozillaThunderbird-17.0.5-33.59.3 MozillaThunderbird-buildsymbols-17.0.5-33.59.3 MozillaThunderbird-debuginfo-17.0.5-33.59.3 MozillaThunderbird-debugsource-17.0.5-33.59.3 MozillaThunderbird-devel-17.0.5-33.59.3 MozillaThunderbird-devel-debuginfo-17.0.5-33.59.3 MozillaThunderbird-translations-common-17.0.5-33.59.3 MozillaThunderbird-translations-other-17.0.5-33.59.3 enigmail-1.5.1+17.0.5-33.59.3 enigmail-debuginfo-1.5.1+17.0.5-33.59.3 libfreebl3-3.14.3-9.29.2 libfreebl3-debuginfo-3.14.3-9.29.2 libsoftokn3-3.14.3-9.29.2 libsoftokn3-debuginfo-3.14.3-9.29.2 mozilla-js-17.0.5-2.65.2 mozilla-js-debuginfo-17.0.5-2.65.2 mozilla-nspr-4.9.6-3.15.1 mozilla-nspr-debuginfo-4.9.6-3.15.1 mozilla-nspr-debugsource-4.9.6-3.15.1 mozilla-nspr-devel-4.9.6-3.15.1 mozilla-nss-3.14.3-9.29.2 mozilla-nss-certs-3.14.3-9.29.2 mozilla-nss-certs-debuginfo-3.14.3-9.29.2 mozilla-nss-debuginfo-3.14.3-9.29.2 mozilla-nss-debugsource-3.14.3-9.29.2 mozilla-nss-devel-3.14.3-9.29.2 mozilla-nss-sysinit-3.14.3-9.29.2 mozilla-nss-sysinit-debuginfo-3.14.3-9.29.2 mozilla-nss-tools-3.14.3-9.29.2 mozilla-nss-tools-debuginfo-3.14.3-9.29.2 seamonkey-2.17-2.61.2 seamonkey-debuginfo-2.17-2.61.2 seamonkey-debugsource-2.17-2.61.2 seamonkey-dom-inspector-2.17-2.61.2 seamonkey-irc-2.17-2.61.2 seamonkey-translations-common-2.17-2.61.2 seamonkey-translations-other-2.17-2.61.2 seamonkey-venkman-2.17-2.61.2 xulrunner-17.0.5-2.65.2 xulrunner-buildsymbols-17.0.5-2.65.2 xulrunner-debuginfo-17.0.5-2.65.2 xulrunner-debugsource-17.0.5-2.65.2 xulrunner-devel-17.0.5-2.65.2 xulrunner-devel-debuginfo-17.0.5-2.65.2 - openSUSE 12.1 (x86_64): libfreebl3-32bit-3.14.3-9.29.2 libfreebl3-debuginfo-32bit-3.14.3-9.29.2 libsoftokn3-32bit-3.14.3-9.29.2 libsoftokn3-debuginfo-32bit-3.14.3-9.29.2 mozilla-js-32bit-17.0.5-2.65.2 mozilla-js-debuginfo-32bit-17.0.5-2.65.2 mozilla-nspr-32bit-4.9.6-3.15.1 mozilla-nspr-debuginfo-32bit-4.9.6-3.15.1 mozilla-nss-32bit-3.14.3-9.29.2 mozilla-nss-certs-32bit-3.14.3-9.29.2 mozilla-nss-certs-debuginfo-32bit-3.14.3-9.29.2 mozilla-nss-debuginfo-32bit-3.14.3-9.29.2 mozilla-nss-sysinit-32bit-3.14.3-9.29.2 mozilla-nss-sysinit-debuginfo-32bit-3.14.3-9.29.2 xulrunner-32bit-17.0.5-2.65.2 xulrunner-debuginfo-32bit-17.0.5-2.65.2 - openSUSE 12.1 (ia64): libfreebl3-debuginfo-x86-3.14.3-9.29.2 libfreebl3-x86-3.14.3-9.29.2 libsoftokn3-debuginfo-x86-3.14.3-9.29.2 libsoftokn3-x86-3.14.3-9.29.2 mozilla-js-debuginfo-x86-17.0.5-2.65.2 mozilla-js-x86-17.0.5-2.65.2 mozilla-nspr-debuginfo-x86-4.9.6-3.15.1 mozilla-nspr-x86-4.9.6-3.15.1 mozilla-nss-certs-debuginfo-x86-3.14.3-9.29.2 mozilla-nss-certs-x86-3.14.3-9.29.2 mozilla-nss-debuginfo-x86-3.14.3-9.29.2 mozilla-nss-sysinit-debuginfo-x86-3.14.3-9.29.2 mozilla-nss-sysinit-x86-3.14.3-9.29.2 mozilla-nss-x86-3.14.3-9.29.2 xulrunner-debuginfo-x86-17.0.5-2.65.2 xulrunner-x86-17.0.5-2.65.2


References

https://www.suse.com/security/cve/CVE-2013-0788.html https://www.suse.com/security/cve/CVE-2013-0789.html https://www.suse.com/security/cve/CVE-2013-0791.html https://www.suse.com/security/cve/CVE-2013-0792.html https://www.suse.com/security/cve/CVE-2013-0793.html https://www.suse.com/security/cve/CVE-2013-0794.html https://www.suse.com/security/cve/CVE-2013-0795.html https://www.suse.com/security/cve/CVE-2013-0796.html https://www.suse.com/security/cve/CVE-2013-0800.html https://www.suse.com/security/cve/CVE-2013-1620.html https://bugzilla.novell.com/813026


Severity
Announcement ID: openSUSE-SU-2013:0630-1
Rating: important
Affected Products: openSUSE 12.3 openSUSE 12.2 openSUSE 12.1 .

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved