{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2012-1964","title":"Title"},{"category":"description","text":"The certificate-warning functionality in browser/components/certerror/content/aboutCertError.xhtml in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.10 does not properly handle attempted clickjacking of the about:certerror page, which allows man-in-the-middle attackers to trick users into adding an unintended exception via an IFRAME element.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2012-1964","url":"https://www.suse.com/security/cve/CVE-2012-1964"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 771583 for CVE-2012-1964","url":"https://bugzilla.suse.com/771583"},{"category":"external","summary":"Advisory link for SUSE-SU-2012:0895-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2012-July/000189.html"},{"category":"external","summary":"Advisory link for SUSE-SU-2012:0896-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2012-July/000190.html"},{"category":"external","summary":"Advisory link for openSUSE-SU-2012:0899-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2QN5R2ILBMVRYQO2D4JZFUMQ5C3OYF3B/#2QN5R2ILBMVRYQO2D4JZFUMQ5C3OYF3B"}],"title":"SUSE CVE CVE-2012-1964","tracking":{"current_release_date":"2025-07-30T23:45:43Z","generator":{"date":"2023-02-15T05:47:30Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2012-1964","initial_release_date":"2023-02-15T05:47:30Z","revision_history":[{"date":"2023-02-15T05:47:30Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:02:19Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:28:32Z","number":"4","summary":"Current version"},{"date":"2025-03-14T07:33:49Z","number":"5","summary":"Current version"},{"date":"2025-03-16T14:01:51Z","number":"6","summary":"Current version"},{"date":"2025-04-25T13:34:04Z","number":"7","summary":"Current version"},{"date":"2025-06-27T01:48:33Z","number":"8","summary":"Current version"},{"date":"2025-07-03T00:24:27Z","number":"9","summary":"Current version"},{"date":"2025-07-30T23:45:43Z","number":"10","summary":"Current version"}],"status":"interim","version":"10"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE CaaS Platform 4.0","product":{"name":"SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:caasp:4.0"}}},{"category":"product_name","name":"SUSE Enterprise Storage 6","product":{"name":"SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6","product_identification_helper":{"cpe":"cpe:/o:suse:ses:6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Desktop 11 SP4","product":{"name":"SUSE Linux Enterprise Desktop 11 SP4","product_id":"SUSE Linux Enterprise Desktop 11 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:suse_sled:11:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product":{"name":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product_identification_helper":{"cpe":"cpe:/o:suse:sles:11:sp1:teradata"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 11 SP3","product":{"name":"SUSE Linux Enterprise Server 11 SP3","product_id":"SUSE Linux Enterprise Server 11 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:suse_sles:11:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 11 SP4","product":{"name":"SUSE Linux Enterprise Server 11 SP4","product_id":"SUSE Linux Enterprise Server 11 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:suse_sles:11:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP1-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15-ESPOS","product":{"name":"SUSE Linux Enterprise Server 15-ESPOS","product_id":"SUSE Linux Enterprise Server 15-ESPOS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-espos:15"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15-LTSS","product":{"name":"SUSE Linux Enterprise Server 15-LTSS","product_id":"SUSE Linux Enterprise Server 15-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product":{"name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_bcl:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 11 SP4","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 11 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 11 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:11:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15","product_id":"SUSE Linux Enterprise Server for SAP Applications 15","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Software Development Kit 11 SP4","product":{"name":"SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4","product_identification_helper":{"cpe":"cpe:/a:suse:sle-sdk:11:sp4"}}},{"category":"product_version","name":"MozillaFirefox","product":{"name":"MozillaFirefox","product_id":"MozillaFirefox","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox@?upstream=MozillaFirefox.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-10.0.6-0.4.1","product":{"name":"MozillaFirefox-10.0.6-0.4.1","product_id":"MozillaFirefox-10.0.6-0.4.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:10.0.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox@10.0.6-0.4.1?upstream=MozillaFirefox-10.0.6-0.4.1.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-17.0.4esr-0.10.42","product":{"name":"MozillaFirefox-17.0.4esr-0.10.42","product_id":"MozillaFirefox-17.0.4esr-0.10.42","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:17.0.4esr:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox@17.0.4esr-0.10.42?upstream=MozillaFirefox-17.0.4esr-0.10.42.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-31.7.0esr-0.8.1","product":{"name":"MozillaFirefox-31.7.0esr-0.8.1","product_id":"MozillaFirefox-31.7.0esr-0.8.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:31.7.0esr:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox@31.7.0esr-0.8.1?upstream=MozillaFirefox-31.7.0esr-0.8.1.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-branding-SLED-7-0.6.7.70","product":{"name":"MozillaFirefox-branding-SLED-7-0.6.7.70","product_id":"MozillaFirefox-branding-SLED-7-0.6.7.70","product_identification_helper":{"purl":"pkg:rpm/suse/MozillaFirefox-branding-SLED@7-0.6.7.70?upstream=MozillaFirefox-branding-SLED-7-0.6.7.70.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-devel","product":{"name":"MozillaFirefox-devel","product_id":"MozillaFirefox-devel","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-devel@?upstream=MozillaFirefox.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-devel-31.7.0esr-0.8.1","product":{"name":"MozillaFirefox-devel-31.7.0esr-0.8.1","product_id":"MozillaFirefox-devel-31.7.0esr-0.8.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:31.7.0esr:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-devel@31.7.0esr-0.8.1?upstream=MozillaFirefox-31.7.0esr-0.8.1.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-translations-10.0.6-0.4.1","product":{"name":"MozillaFirefox-translations-10.0.6-0.4.1","product_id":"MozillaFirefox-translations-10.0.6-0.4.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:10.0.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-translations@10.0.6-0.4.1?upstream=MozillaFirefox-10.0.6-0.4.1.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-translations-17.0.4esr-0.10.42","product":{"name":"MozillaFirefox-translations-17.0.4esr-0.10.42","product_id":"MozillaFirefox-translations-17.0.4esr-0.10.42","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:17.0.4esr:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-translations@17.0.4esr-0.10.42?upstream=MozillaFirefox-17.0.4esr-0.10.42.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-translations-31.7.0esr-0.8.1","product":{"name":"MozillaFirefox-translations-31.7.0esr-0.8.1","product_id":"MozillaFirefox-translations-31.7.0esr-0.8.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:31.7.0esr:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-translations@31.7.0esr-0.8.1?upstream=MozillaFirefox-31.7.0esr-0.8.1.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-translations-common","product":{"name":"MozillaFirefox-translations-common","product_id":"MozillaFirefox-translations-common","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-translations-common@?upstream=MozillaFirefox.src.rpm"}}},{"category":"product_version","name":"MozillaFirefox-translations-other","product":{"name":"MozillaFirefox-translations-other","product_id":"MozillaFirefox-translations-other","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaFirefox-translations-other@?upstream=MozillaFirefox.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-10.0.6-0.4.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-10.0.6-0.4.1"},"product_reference":"MozillaFirefox-10.0.6-0.4.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-branding-SLED-7-0.6.7.70 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-branding-SLED-7-0.6.7.70"},"product_reference":"MozillaFirefox-branding-SLED-7-0.6.7.70","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-10.0.6-0.4.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-translations-10.0.6-0.4.1"},"product_reference":"MozillaFirefox-translations-10.0.6-0.4.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-17.0.4esr-0.10.42 as component of SUSE Linux Enterprise Server 11 SP3","product_id":"SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-17.0.4esr-0.10.42"},"product_reference":"MozillaFirefox-17.0.4esr-0.10.42","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP3"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-17.0.4esr-0.10.42 as component of SUSE Linux Enterprise Server 11 SP3","product_id":"SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-translations-17.0.4esr-0.10.42"},"product_reference":"MozillaFirefox-translations-17.0.4esr-0.10.42","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP3"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Server 11 SP4","product_id":"SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Server 11 SP4","product_id":"SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-translations-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-translations-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Server 11 SP4","product_id":"SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-devel-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-devel-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Desktop 11 SP4","product_id":"SUSE Linux Enterprise Desktop 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-devel-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel-31.7.0esr-0.8.1 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"},"product_reference":"MozillaFirefox-devel-31.7.0esr-0.8.1","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Enterprise Storage 6"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise High Performance Computing 15-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise High Performance Computing 15-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise High Performance Computing 15-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise High Performance Computing 15-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server 15-ESPOS","product_id":"SUSE Linux Enterprise Server 15-ESPOS:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server 15-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server 15-LTSS","product_id":"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise Server 15-LTSS","product_id":"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise Server 15-LTSS","product_id":"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise Server 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise Server 15-LTSS","product_id":"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise Server 15-LTSS"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server for SAP Applications 15","product_id":"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise Server for SAP Applications 15","product_id":"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise Server for SAP Applications 15","product_id":"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise Server for SAP Applications 15","product_id":"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox"},"product_reference":"MozillaFirefox","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-devel as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel"},"product_reference":"MozillaFirefox-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-common as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common"},"product_reference":"MozillaFirefox-translations-common","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"MozillaFirefox-translations-other as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other"},"product_reference":"MozillaFirefox-translations-other","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"}]},"vulnerabilities":[{"cve":"CVE-2012-1964","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2012-1964"}],"notes":[{"category":"general","text":"The certificate-warning functionality in browser/components/certerror/content/aboutCertError.xhtml in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.10 does not properly handle attempted clickjacking of the about:certerror page, which allows man-in-the-middle attackers to trick users into adding an unintended exception via an IFRAME element.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE CaaS Platform 4.0:MozillaFirefox","SUSE CaaS Platform 4.0:MozillaFirefox-devel","SUSE CaaS Platform 4.0:MozillaFirefox-translations-common","SUSE CaaS Platform 4.0:MozillaFirefox-translations-other","SUSE Enterprise Storage 6:MozillaFirefox","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other","SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox","SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel","SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common","SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other","SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox","SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel","SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common","SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other","SUSE Linux Enterprise Server 15-ESPOS:MozillaFirefox","SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox","SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel","SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common","SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other","SUSE Linux Enterprise Server Business Critical Linux 15 SP1:MozillaFirefox","SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox","SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel","SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common","SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other","SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox","SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel","SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common","SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other"],"recommended":["SUSE Linux Enterprise Desktop 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-10.0.6-0.4.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-branding-SLED-7-0.6.7.70","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-translations-10.0.6-0.4.1","SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-17.0.4esr-0.10.42","SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-translations-17.0.4esr-0.10.42","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-translations-31.7.0esr-0.8.1","SUSE Linux Enterprise Server for SAP Applications 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Software Development Kit 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"]},"references":[{"category":"external","summary":"CVE-2012-1964","url":"https://www.suse.com/security/cve/CVE-2012-1964"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 771583 for CVE-2012-1964","url":"https://bugzilla.suse.com/771583"},{"category":"external","summary":"Advisory link for SUSE-SU-2012:0895-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2012-July/000189.html"},{"category":"external","summary":"Advisory link for SUSE-SU-2012:0896-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2012-July/000190.html"},{"category":"external","summary":"Advisory link for openSUSE-SU-2012:0899-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2QN5R2ILBMVRYQO2D4JZFUMQ5C3OYF3B/#2QN5R2ILBMVRYQO2D4JZFUMQ5C3OYF3B"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-10.0.6-0.4.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-branding-SLED-7-0.6.7.70","SUSE Linux Enterprise Server 11 SP1-TERADATA:MozillaFirefox-translations-10.0.6-0.4.1","SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-17.0.4esr-0.10.42","SUSE Linux Enterprise Server 11 SP3:MozillaFirefox-translations-17.0.4esr-0.10.42","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Server 11 SP4:MozillaFirefox-translations-31.7.0esr-0.8.1","SUSE Linux Enterprise Server for SAP Applications 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1","SUSE Linux Enterprise Software Development Kit 11 SP4:MozillaFirefox-devel-31.7.0esr-0.8.1"]}],"threats":[{"category":"impact","date":"2013-06-28T10:39:04Z","details":"important"}],"title":"CVE-2012-1964"}]}