suse-su-2021:3745-1
Vulnerability from csaf_suse
Published
2021-11-19 16:13
Modified
2021-11-19 16:13
Summary
Security update for MozillaFirefox
Notes
Title of the patch
Security update for MozillaFirefox
Description of the patch
This update for MozillaFirefox fixes the following issues:
MozillaFirefox was updated to Extended Support Release 91.3.0 ESR
* Fixed: Various stability, functionality, and security fixes
MFSA 2021-49 (bsc#1192250)
* CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets
* CVE-2021-38504: Use-after-free in file picker dialog
* CVE-2021-38505: Windows 10 Cloud Clipboard may have recorded sensitive user data
* CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode without notification or warning
* CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports
* CVE-2021-38508: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing
* CVE-2021-38509: Javascript alert box could have been spoofed onto an arbitrary domain
* CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac OS
* MOZ-2021-0008: Use-after-free in HTTP2 Session object
* MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3
Patchnames
SUSE-2021-3745,SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-3745,SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-3745
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\nMozillaFirefox was updated to Extended Support Release 91.3.0 ESR\n\n* Fixed: Various stability, functionality, and security fixes\n\nMFSA 2021-49 (bsc#1192250)\n\n * CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets\n * CVE-2021-38504: Use-after-free in file picker dialog\n * CVE-2021-38505: Windows 10 Cloud Clipboard may have recorded sensitive user data\n * CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode without notification or warning\n * CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports\n * CVE-2021-38508: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing\n * CVE-2021-38509: Javascript alert box could have been spoofed onto an arbitrary domain\n * CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac OS\n * MOZ-2021-0008: Use-after-free in HTTP2 Session object\n * MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3745,SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-3745,SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-3745",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3745-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3745-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213745-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3745-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-November/009752.html"
},
{
"category": "self",
"summary": "SUSE Bug 1192250",
"url": "https://bugzilla.suse.com/1192250"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38503 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38503/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38504 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38504/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38505 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38506 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38507 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38508 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38509 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38510 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38510/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2021-11-19T16:13:45Z",
"generator": {
"date": "2021-11-19T16:13:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3745-1",
"initial_release_date": "2021-11-19T16:13:45Z",
"revision_history": [
{
"date": "2021-11-19T16:13:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-91.3.0-152.6.1.aarch64",
"product": {
"name": "MozillaFirefox-91.3.0-152.6.1.aarch64",
"product_id": "MozillaFirefox-91.3.0-152.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.aarch64",
"product": {
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.aarch64",
"product_id": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"product": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"product_id": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"product_id": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"product_id": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-91.3.0-152.6.1.i686",
"product": {
"name": "MozillaFirefox-91.3.0-152.6.1.i686",
"product_id": "MozillaFirefox-91.3.0-152.6.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.i686",
"product": {
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.i686",
"product_id": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-91.3.0-152.6.1.i686",
"product": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.i686",
"product_id": "MozillaFirefox-devel-91.3.0-152.6.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.i686",
"product": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.i686",
"product_id": "MozillaFirefox-translations-common-91.3.0-152.6.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.i686",
"product": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.i686",
"product_id": "MozillaFirefox-translations-other-91.3.0-152.6.1.i686"
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-91.3.0-152.6.1.ppc64le",
"product": {
"name": "MozillaFirefox-91.3.0-152.6.1.ppc64le",
"product_id": "MozillaFirefox-91.3.0-152.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.ppc64le",
"product": {
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.ppc64le",
"product_id": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"product": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"product_id": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"product_id": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"product_id": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-91.3.0-152.6.1.s390x",
"product": {
"name": "MozillaFirefox-91.3.0-152.6.1.s390x",
"product_id": "MozillaFirefox-91.3.0-152.6.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.s390x",
"product": {
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.s390x",
"product_id": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"product": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"product_id": "MozillaFirefox-devel-91.3.0-152.6.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"product": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"product_id": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"product": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"product_id": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-91.3.0-152.6.1.x86_64",
"product": {
"name": "MozillaFirefox-91.3.0-152.6.1.x86_64",
"product_id": "MozillaFirefox-91.3.0-152.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.x86_64",
"product_id": "MozillaFirefox-branding-upstream-91.3.0-152.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"product": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"product_id": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"product_id": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"product_id": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-desktop-applications:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-desktop-applications:15:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-38503",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38503"
}
],
"notes": [
{
"category": "general",
"text": "The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38503",
"url": "https://www.suse.com/security/cve/CVE-2021-38503"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38503",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38503"
},
{
"cve": "CVE-2021-38504",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38504"
}
],
"notes": [
{
"category": "general",
"text": "When interacting with an HTML input element\u0027s file picker dialog with webkitdirectory set, a use-after-free could have resulted, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38504",
"url": "https://www.suse.com/security/cve/CVE-2021-38504"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38504",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38504"
},
{
"cve": "CVE-2021-38505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38505"
}
],
"notes": [
{
"category": "general",
"text": "Microsoft introduced a new feature in Windows 10 known as Cloud Clipboard which, if enabled, will record data copied to the clipboard to the cloud, and make it available on other computers in certain scenarios. Applications that wish to prevent copied data from being recorded in Cloud History must use specific clipboard formats; and Firefox before versions 94 and ESR 91.3 did not implement them. This could have caused sensitive data to be recorded to a user\u0027s Microsoft account. *This bug only affects Firefox for Windows 10+ with Cloud Clipboard enabled. Other operating systems are unaffected.*. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38505",
"url": "https://www.suse.com/security/cve/CVE-2021-38505"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38505",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38505"
},
{
"cve": "CVE-2021-38506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38506"
}
],
"notes": [
{
"category": "general",
"text": "Through a series of navigations, Firefox could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38506",
"url": "https://www.suse.com/security/cve/CVE-2021-38506"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38506",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38506"
},
{
"cve": "CVE-2021-38507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38507"
}
],
"notes": [
{
"category": "general",
"text": "The Opportunistic Encryption feature of HTTP2 (RFC 8164) allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP address (e.g. port 8443) did not opt-in to opportunistic encryption; a network attacker could forward a connection from the browser to port 443 to port 8443, causing the browser to treat the content of port 8443 as same-origin with HTTP. This was resolved by disabling the Opportunistic Encryption feature, which had low usage. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38507",
"url": "https://www.suse.com/security/cve/CVE-2021-38507"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38507",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38507"
},
{
"cve": "CVE-2021-38508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38508"
}
],
"notes": [
{
"category": "general",
"text": "By displaying a form validity message in the correct location at the same time as a permission prompt (such as for geolocation), the validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38508",
"url": "https://www.suse.com/security/cve/CVE-2021-38508"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38508",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38508"
},
{
"cve": "CVE-2021-38509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38509"
}
],
"notes": [
{
"category": "general",
"text": "Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with arbitrary (although unstyled) contents could be displayed over top an uncontrolled webpage of the attacker\u0027s choosing. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38509",
"url": "https://www.suse.com/security/cve/CVE-2021-38509"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38509",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38509"
},
{
"cve": "CVE-2021-38510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38510"
}
],
"notes": [
{
"category": "general",
"text": "The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user\u0027s computer.*Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox \u003c 94, Thunderbird \u003c 91.3, and Firefox ESR \u003c 91.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38510",
"url": "https://www.suse.com/security/cve/CVE-2021-38510"
},
{
"category": "external",
"summary": "SUSE Bug 1192250 for CVE-2021-38510",
"url": "https://bugzilla.suse.com/1192250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP2:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-19T16:13:45Z",
"details": "important"
}
],
"title": "CVE-2021-38510"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…