Bug 986541

Summary: Firefox doesn't start after today's update
Product: [openSUSE] openSUSE Tumbleweed Reporter: Libor Pechacek <lpechacek>
Component: FirefoxAssignee: E-mail List <bnc-team-mozilla>
Status: VERIFIED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Critical    
Priority: P5 - None CC: antoine.belvire, astieger, eduardo.querido, forgotten_n60T4YgMwL, i22a, juergen, keel_lambert, lpechacek, markcscott2003, martin.wilck, wolfgang
Version: Current   
Target Milestone: ---   
Hardware: i686   
OS: SUSE Other   
See Also: https://bugzilla.redhat.com/show_bug.cgi?id=1332926
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Libor Pechacek 2016-06-26 11:56:40 UTC 
lpechacek@fmn:~> firefox
ExceptionHandler::GenerateDump cloned child 4196
ExceptionHandler::SendContinueSignalToChild sent continue signal to child
ExceptionHandler::WaitForContinueSignal waiting for continue signal...
<and a crash report dialog>
lpechacek@fmn:~> firefox -d gdb
gdb /usr/lib/firefox/firefox -x /tmp/mozargs.pFSenL
GNU gdb (GDB; openSUSE Tumbleweed) 7.11
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i586-suse-linux".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://bugs.opensuse.org/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/lib/firefox/firefox...Reading symbols from /usr/lib/debug/usr/lib/firefox/firefox.debug...done.
done.
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/libthread_db.so.1".
runDetaching after fork from child process 4228.
[New Thread 0xb0b84b40 (LWP 4229)]
[Thread 0xb0b84b40 (LWP 4229) exited]
Detaching after fork from child process 4230.
[New Thread 0xb0b84b40 (LWP 4231)]
[New Thread 0xaeb65b40 (LWP 4232)]
[New Thread 0xae364b40 (LWP 4233)]
[New Thread 0xad9ffb40 (LWP 4234)]
[New Thread 0xad1feb40 (LWP 4235)]
[New Thread 0xacffdb40 (LWP 4236)]
[New Thread 0xacdfcb40 (LWP 4237)]
[New Thread 0xacbfbb40 (LWP 4238)]
[New Thread 0xac9fab40 (LWP 4239)]
[New Thread 0xac7f9b40 (LWP 4240)]
[New Thread 0xab1ffb40 (LWP 4241)]
[New Thread 0xaa49eb40 (LWP 4242)]
[New Thread 0xaa2ffb40 (LWP 4243)]
[New Thread 0xa9472b40 (LWP 4244)]
[New Thread 0xa8c71b40 (LWP 4245)]
[New Thread 0xa78ffb40 (LWP 4246)]
[New Thread 0xa70feb40 (LWP 4247)]
[New Thread 0xa66ffb40 (LWP 4248)]
[New Thread 0xa5cffb40 (LWP 4249)]
[New Thread 0xa4bffb40 (LWP 4250)]
[New Thread 0xa43feb40 (LWP 4251)]
[New Thread 0xa42fdb40 (LWP 4252)]
[New Thread 0xa38ffb40 (LWP 4253)]
[New Thread 0xa30feb40 (LWP 4254)]
[New Thread 0xa26ffb40 (LWP 4255)]
[Thread 0xa70feb40 (LWP 4247) exited]
[New Thread 0xa1bffb40 (LWP 4256)]
[New Thread 0xa13feb40 (LWP 4257)]
[New Thread 0xa0bfdb40 (LWP 4258)]

Thread 1 "firefox" received signal SIGSEGV, Segmentation fault.
0xb4801692 in nsLayoutUtils::GetLastSibling (aFrame=0xe5e5e5e5) at /usr/src/debug/mozilla/layout/base/nsLayoutUtils.cpp:1797
1797	/usr/src/debug/mozilla/layout/base/nsLayoutUtils.cpp: No such file or directory.
Missing separate debuginfos, use: zypper install Mesa-libEGL1-debuginfo-11.2.2-139.2.i586 Mesa-libGL1-debuginfo-11.2.2-139.2.i586 Mesa-libglapi0-debuginfo-11.2.2-139.2.i586 dbus-1-glib-debuginfo-0.104-1.5.i586 fontconfig-debuginfo-2.11.1-6.3.i586 gconf2-debuginfo-3.2.6-10.2.i586 glibc-locale-debuginfo-2.23-4.12.i586 gtk2-theming-engine-adwaita-debuginfo-3.20.2-2.2.i586 gvfs-debuginfo-1.28.2-1.2.i586 libFLAC8-debuginfo-1.3.1-2.5.i586 libICE6-debuginfo-1.0.9-3.6.i586 libSM6-debuginfo-1.2.2-5.6.i586 libX11-6-debuginfo-1.6.3-2.15.i586 libX11-xcb1-debuginfo-1.6.3-2.15.i586 libXau6-debuginfo-1.0.8-6.5.i586 libXcomposite1-debuginfo-0.4.4-10.5.i586 libXcursor1-debuginfo-1.1.14-6.6.i586 libXdamage1-debuginfo-1.1.4-9.5.i586 libXext6-debuginfo-1.3.3-3.17.i586 libXfixes3-debuginfo-5.0.2-1.2.i586 libXi6-debuginfo-1.7.6-1.3.i586 libXinerama1-debuginfo-1.1.3-5.5.i586 libXrandr2-debuginfo-1.5.0-2.3.i586 libXrender1-debuginfo-0.9.9-1.17.i586 libXt6-debuginfo-1.1.5-1.17.i586 libXxf86vm1-debuginfo-1.1.4-1.5.i586 libasound2-debuginfo-1.1.1-3.2.i586 libatk-1_0-0-debuginfo-2.20.0-2.2.i586 libbz2-1-debuginfo-1.0.6-37.77.i586 libcairo2-debuginfo-1.15.2-1.3.i586 libcanberra-gtk0-debuginfo-0.30-12.3.i586 libcanberra-gtk2-module-debuginfo-0.30-12.3.i586 libcanberra0-debuginfo-0.30-12.3.i586 libcap2-debuginfo-2.22-14.99.i586 libdatrie1-debuginfo-0.2.9-1.4.i586 libdbus-1-3-debuginfo-1.10.8-1.3.i586 libdrm2-debuginfo-2.4.68-1.2.i586 libexpat1-debuginfo-2.1.1-3.17.i586 libffi4-debuginfo-5.3.1+r234891-1.22.i586 libfreebl3-debuginfo-3.23-1.2.i586 libfreetype6-debuginfo-2.6.3-1.3.i586 libgbm1-debuginfo-11.2.2-139.2.i586 libgcc_s1-gcc6-debuginfo-6.1.1+r236988-1.1.i586 libgcrypt20-debuginfo-1.6.5-2.2.i586 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-1.3.i586 libgio-2_0-0-debuginfo-2.48.1-1.2.i586 libglib-2_0-0-debuginfo-2.48.1-1.2.i586 libgmodule-2_0-0-debuginfo-2.48.1-1.2.i586 libgobject-2_0-0-debuginfo-2.48.1-1.2.i586 libgpg-error0-debuginfo-1.22-1.2.i586 libgraphite2-3-debuginfo-1.3.8-1.2.i586 libgthread-2_0-0-debuginfo-2.48.1-1.2.i586 libgtk-2_0-0-debuginfo-2.24.30-1.3.i586 libharfbuzz0-debuginfo-1.2.7-2.2.i586 libjson-c2-debuginfo-0.12-1.8.i586 libltdl7-debuginfo-2.4.6-4.66.i586 liblzma5-debuginfo-5.2.2-4.87.i586 libmodman1-debuginfo-2.0.1-17.5.i586 libnsssharedhelper0-debuginfo-1.0.10-9.5.i586 libogg0-debuginfo-1.3.2-1.5.i586 libpango-1_0-0-debuginfo-1.40.1-1.3.i586 libpcre1-debuginfo-8.38-1.71.i586 libpixman-1-0-debuginfo-0.34.0-2.2.i586 libpng16-16-debuginfo-1.6.22-1.2.i586 libproxy1-debuginfo-0.4.13-2.2.i586 libpulse0-debuginfo-8.0-4.2.i586 libselinux1-debuginfo-2.3-5.95.i586 libsndfile1-debuginfo-1.0.26-2.2.i586 libsoftokn3-debuginfo-3.23-1.2.i586 libspeex1-debuginfo-1.2~rc2-2.4.i586 libsqlite3-0-debuginfo-3.13.0-1.2.i586 libstartup-notification-1-0-debuginfo-0.12-14.5.i586 libstdc++6-gcc6-debuginfo-6.1.1+r236988-1.1.i586 libsystemd0-debuginfo-228-8.2.i586 libthai0-debuginfo-0.1.24-1.3.i586 libuuid1-debuginfo-2.28-2.13.i586 libvorbis0-debuginfo-1.3.5-1.7.i586 libvorbisenc2-debuginfo-1.3.5-1.7.i586 libvorbisfile3-debuginfo-1.3.5-1.7.i586 libwayland-client0-debuginfo-1.11.0-1.2.i586 libwayland-server0-debuginfo-1.11.0-1.2.i586 libxcb-dri2-0-debuginfo-1.12-1.2.i586 libxcb-dri3-0-debuginfo-1.12-1.2.i586 libxcb-glx0-debuginfo-1.12-1.2.i586 libxcb-present0-debuginfo-1.12-1.2.i586 libxcb-render0-debuginfo-1.12-1.2.i586 libxcb-shm0-debuginfo-1.12-1.2.i586 libxcb-sync1-debuginfo-1.12-1.2.i586 libxcb-util1-debuginfo-0.4.0-1.6.i586 libxcb-xfixes0-debuginfo-1.12-1.2.i586 libxcb1-debuginfo-1.12-1.2.i586 libxshmfence1-debuginfo-1.2-1.5.i586 libz1-debuginfo-1.2.8-11.74.i586 mozilla-nspr-debuginfo-4.12-1.3.i586 mozilla-nss-certs-debuginfo-3.23-1.2.i586 mozilla-nss-debuginfo-3.23-1.2.i586
(gdb) bt
#0  0xb4801692 in nsLayoutUtils::GetLastSibling (aFrame=0xe5e5e5e5) at /usr/src/debug/mozilla/layout/base/nsLayoutUtils.cpp:1797
#1  0xb47a12ec in nsFrameItems::AddChild (this=0xbfffcfe4, aChild=0xa1d47498)
    at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:646
#2  0xb47bd446 in nsFrameConstructorState::AddChild (this=0xbfffd084, aNewFrame=0xa1d47498, aFrameItems=..., aContent=0xa39ed7e0, 
    aStyleContext=0xa1d47298, aParentFrame=0xa4cb5db0, aCanBePositioned=false, aCanBeFloated=false, aIsOutOfFlowPopup=false, 
    aInsertAfter=false, aInsertAfterFrame=0x0) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:1245
#3  0xb47e6877 in nsCSSFrameConstructor::ConstructFrameFromItemInternal (this=0xa4c7c500, aItem=..., aState=..., aParentFrame=0xa4cb5db0, 
    aFrameItems=...) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:3913
#4  0xb47e71b4 in nsCSSFrameConstructor::ConstructFramesFromItem (this=<optimized out>, aState=..., aIter=..., 
    aParentFrame=<optimized out>, aFrameItems=...) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:6049
#5  0xb47e78a1 in nsCSSFrameConstructor::ConstructFramesFromItemList (this=<optimized out>, aState=..., aItems=..., 
    aParentFrame=<optimized out>, aFrameItems=...) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:10411
#6  0xb47e85a1 in nsCSSFrameConstructor::CreateAnonymousFrames (this=0xa4c7c500, aState=..., aParent=0xa39ee2e0, aParentFrame=0xa4cb5db0, 
    aPendingBinding=0x0, aChildItems=...) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:4108
#7  0xb47e8b5d in nsCSSFrameConstructor::BeginBuildingScrollFrame (this=0xa4c7c500, aState=..., aContent=0xa39ee2e0, 
    aContentStyle=0xa4cb50b8, aParentFrame=0xa4cb5618, aScrolledPseudo=0xab21b8c0, aIsRoot=true, aNewFrame=@0xbfffd074: 0x0)
    at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:4516
#8  0xb47e8d7a in nsCSSFrameConstructor::SetUpDocElementContainingBlock (this=0xa4c7c500, aDocElement=0xa39ee2e0)
    at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:2816
#9  0xb47efa30 in nsCSSFrameConstructor::ConstructDocElementFrame (this=0xa4c7c500, aDocElement=0xa39ee2e0, aFrameState=0x0)
    at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:2353
#10 0xb47f0b76 in nsCSSFrameConstructor::ContentRangeInserted (this=0xa4c7c500, aContainer=0x0, aStartChild=0xa39ee2e0, aEndChild=0x0, 
    aFrameState=0x0, aAllowLazyConstruction=false) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:7599
#11 0xb47f1570 in nsCSSFrameConstructor::ContentInserted (this=0xa4c7c500, aContainer=0x0, aChild=0xa39ee2e0, aFrameState=0x0, 
    aAllowLazyConstruction=false) at /usr/src/debug/mozilla/layout/base/nsCSSFrameConstructor.cpp:7489
#12 0xb483fcf4 in PresShell::Initialize (this=<optimized out>, aWidth=<optimized out>, aHeight=<optimized out>)
    at /usr/src/debug/mozilla/layout/base/nsPresShell.cpp:1672
#13 0xb347d1f9 in nsContentSink::StartLayout (this=0xa5343480, aIgnorePendingSheets=false)
    at /usr/src/debug/mozilla/dom/base/nsContentSink.cpp:1216
#14 0xb30d1742 in nsHtml5TreeOpExecutor::StartLayout (this=0xa5343480) at /usr/src/debug/mozilla/parser/html/nsHtml5TreeOpExecutor.cpp:614
#15 0xb30f24a3 in nsHtml5TreeOperation::Perform (this=0xa4cc5770, aBuilder=0xa5343480, aScriptElement=0xbfffd918)
    at /usr/src/debug/mozilla/parser/html/nsHtml5TreeOperation.cpp:823
#16 0xb30ef568 in nsHtml5TreeOpExecutor::RunFlushLoop (this=0xa5343480)
    at /usr/src/debug/mozilla/parser/html/nsHtml5TreeOpExecutor.cpp:451
#17 0xb30efa09 in nsHtml5ExecutorFlusher::Run (this=0xa4c269c0) at /usr/src/debug/mozilla/parser/html/nsHtml5StreamParser.cpp:128
#18 0xb284acac in nsThread::ProcessNextEvent (this=<optimized out>, aMayWait=<optimized out>, aResult=<optimized out>)
    at /usr/src/debug/mozilla/xpcom/threads/nsThread.cpp:994
#19 0xb2873bed in NS_ProcessNextEvent (aThread=<optimized out>, aMayWait=false) at /usr/src/debug/mozilla/xpcom/glue/nsThreadUtils.cpp:297
#20 0xb2b5d5c5 in mozilla::ipc::MessagePump::Run (this=0xb0026640, aDelegate=0xb796f600)
    at /usr/src/debug/mozilla/ipc/glue/MessagePump.cpp:95
#21 0xb2b3e4b6 in MessageLoop::RunInternal (this=0xb796f600) at /usr/src/debug/mozilla/ipc/chromium/src/base/message_loop.cc:234
#22 MessageLoop::RunHandler (this=0xb796f600) at /usr/src/debug/mozilla/ipc/chromium/src/base/message_loop.cc:227
#23 MessageLoop::Run (this=0xb796f600) at /usr/src/debug/mozilla/ipc/chromium/src/base/message_loop.cc:201
#24 0xb4569537 in nsBaseAppShell::Run (this=0xab2fb5b0) at /usr/src/debug/mozilla/widget/nsBaseAppShell.cpp:156
#25 0xb4e96268 in nsAppStartup::Run (this=0xab2fc4c0) at /usr/src/debug/mozilla/toolkit/components/startup/nsAppStartup.cpp:281
#26 0xb4ee3d75 in XREMain::XRE_mainRun (this=0xbfffdcbc) at /usr/src/debug/mozilla/toolkit/xre/nsAppRunner.cpp:4337
#27 0xb4ee48f8 in XREMain::XRE_main (this=0xbfffdcbc, argc=1, argv=0xbffff024, aAppData=0xbfffde2c)
    at /usr/src/debug/mozilla/toolkit/xre/nsAppRunner.cpp:4434
#28 0xb4ee4bfd in XRE_main (argc=1, argv=0xbffff024, aAppData=0xbfffde2c, aFlags=0)
    at /usr/src/debug/mozilla/toolkit/xre/nsAppRunner.cpp:4540
#29 0x80005134 in do_main (argc=1, argv=0xbffff024, envp=<optimized out>, xreDirectory=0xb7966480)
    at /usr/src/debug/mozilla/browser/app/nsBrowserApp.cpp:220
#30 0x800043fc in main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>)
    at /usr/src/debug/mozilla/browser/app/nsBrowserApp.cpp:360
(gdb)
Comment 1 Wolfgang Rosenauer 2016-07-05 05:28:24 UTC 
Which Firefox version is it exactly?
Is it only 32bit or also 64bit?
Comment 2 Libor Pechacek 2016-07-05 07:46:17 UTC 
(In reply to Wolfgang Rosenauer from comment #1)
> Which Firefox version is it exactly?
> Is it only 32bit or also 64bit?

Package version 47.0.1-1.1, 32bit environment.  Latest snapshot still crashes.

fmn:~ # rpm -q --qf '%{name} %{version}-%{release} %{arch}\n%{disturl}\n' \
MozillaFirefox
MozillaFirefox 47.0.1-1.1 i586
obs://build.opensuse.org/openSUSE:Factory/standard/07e720f397b0c0e58ffe069106d18e46-MozillaFirefox
Comment 3 Andreas Stieger 2016-07-08 15:52:11 UTC 
*** Bug 987909 has been marked as a duplicate of this bug. ***
Comment 4 Andreas Stieger 2016-07-08 17:21:49 UTC 
One user who e-mailed me directly (bug 987909) sent a screenshot that indicated that this was on the GNOME desktop.
Comment 5 Forgotten User n60T4YgMwL 2016-07-09 11:36:06 UTC 
It's not DE related, I have the issue on both my notebook with KDE, and
a VM with just Xorg installed (both Tumbleweed 32bit).
Comment 6 Jürgen Spitzmüller 2016-07-09 15:50:21 UTC 
Same here. FF crashes on two different machines with TW 32bit, no problem on two other machines with TW 64bit.
Comment 7 Ian Jones 2016-07-10 07:26:45 UTC 
I see this too on two 32 bit machines. If I download the firefox tar from mozilla however it works ok.

Build ID 20160628000000
Comment 8 Mark Scott 2016-07-15 16:59:31 UTC 
I Can confirm this as well for KDE 32bit FF in TW. I'm running TW in VBox 5.1.
Comment 9 Antoine Belvire 2016-07-24 18:04:39 UTC 
*** Bug 990376 has been marked as a duplicate of this bug. ***
Comment 10 Antoine Belvire 2016-07-24 19:26:46 UTC 
It looks like this problem with Icecat: https://bugzilla.redhat.com/show_bug.cgi?id=1332926.

I've rebuilt Firefox with -fno-delete-null-pointer-checks and -fno-inline-small-functions. You can test it from my branch repo:

> sudo zypper ar -f obs://home:1Antoine1:branches:mozilla:Factory/openSUSE_Factory fix-boo986541
> sudo zypper in --from fix-boo986541 MozillaFirefox

Seems to works here.

sr#414914 to mozilla:Factory.
Comment 11 Antoine Belvire 2016-07-24 21:14:56 UTC 
Request 414914 has been accepted.

My branch repo is not available anymore since changes are now in devel project (mozilla:Factory, https://build.opensuse.org/package/show/mozilla:Factory/MozillaFirefox).
Comment 12 Bernhard Wiedemann 2016-07-24 22:00:40 UTC 
This is an autogenerated message for OBS integration:
This bug (986541) was mentioned in
https://build.opensuse.org/request/show/414919 Factory / MozillaFirefox
Comment 13 Antoine Belvire 2016-08-01 12:21:39 UTC 
Resolved fixed with snapshot 20160728.
Comment 14 Libor Pechacek 2016-08-02 17:19:09 UTC 
Verified fixed with TW 20160728.  Thanks!
Comment 15 Swamp Workflow Management 2016-08-04 23:10:01 UTC 
openSUSE-SU-2016:1964-1: An update that fixes 22 vulnerabilities is now available.

Category: security (important)
Bug References: 984126,984403,984637,986541,991809
CVE References: CVE-2016-0718,CVE-2016-2830,CVE-2016-2835,CVE-2016-2836,CVE-2016-2837,CVE-2016-2838,CVE-2016-2839,CVE-2016-5250,CVE-2016-5251,CVE-2016-5252,CVE-2016-5254,CVE-2016-5255,CVE-2016-5258,CVE-2016-5259,CVE-2016-5260,CVE-2016-5261,CVE-2016-5262,CVE-2016-5263,CVE-2016-5264,CVE-2016-5265,CVE-2016-5266,CVE-2016-5268
Sources used:
openSUSE Leap 42.1 (src):    MozillaFirefox-48.0-27.1, mozilla-nss-3.24-21.1
openSUSE 13.2 (src):    MozillaFirefox-48.0-74.1, mozilla-nss-3.24-37.1
Comment 16 Swamp Workflow Management 2016-08-10 23:09:43 UTC 
openSUSE-SU-2016:2026-1: An update that fixes 22 vulnerabilities is now available.

Category: security (important)
Bug References: 984126,984403,984637,986541,991809
CVE References: CVE-2016-0718,CVE-2016-2830,CVE-2016-2835,CVE-2016-2836,CVE-2016-2837,CVE-2016-2838,CVE-2016-2839,CVE-2016-5250,CVE-2016-5251,CVE-2016-5252,CVE-2016-5254,CVE-2016-5255,CVE-2016-5258,CVE-2016-5259,CVE-2016-5260,CVE-2016-5261,CVE-2016-5262,CVE-2016-5263,CVE-2016-5264,CVE-2016-5265,CVE-2016-5266,CVE-2016-5268
Sources used:
openSUSE 13.1 (src):    MozillaFirefox-48.0-119.1, mozilla-nss-3.24-83.1
Comment 20 Swamp Workflow Management 2019-12-11 20:32:23 UTC 
SUSE-SU-2019:14246-1: An update that fixes 118 vulnerabilities is now available.

Category: security (important)
Bug References: 1000036,1001652,1025108,1029377,1029902,1040164,104105,1042670,1043008,1044946,1047925,1047936,1048299,1049186,1050653,1056058,1058013,1066242,1066953,1070738,1070853,1072320,1072322,1073796,1073798,1073799,1073803,1073808,1073818,1073823,1073829,1073830,1073832,1073846,1074235,1077230,1079761,1081750,1082318,1087453,1087459,1087463,1088573,1091764,1094814,1097158,1097375,1097401,1097404,1097748,1104841,1105019,1107030,1109465,1117473,1117626,1117627,1117629,1117630,1120644,1122191,1123482,1124525,1127532,1129346,1130694,1130840,1133452,1133810,1134209,1138459,1140290,1140868,1141853,1144919,1145665,1146090,1146091,1146093,1146094,1146095,1146097,1146099,1146100,1149323,1153423,1154738,1447070,1447409,744625,744629,845955,865853,905528,917607,935856,937414,947747,948045,948602,955142,957814,957815,961254,962297,966076,966077,985201,986541,991344,998743
CVE References: CVE-2013-2882,CVE-2013-6639,CVE-2013-6640,CVE-2013-6668,CVE-2014-0224,CVE-2015-3193,CVE-2015-3194,CVE-2015-5380,CVE-2015-7384,CVE-2016-2086,CVE-2016-2178,CVE-2016-2183,CVE-2016-2216,CVE-2016-5172,CVE-2016-5325,CVE-2016-6304,CVE-2016-6306,CVE-2016-7052,CVE-2016-7099,CVE-2017-1000381,CVE-2017-10686,CVE-2017-11111,CVE-2017-11499,CVE-2017-14228,CVE-2017-14849,CVE-2017-14919,CVE-2017-15896,CVE-2017-15897,CVE-2017-17810,CVE-2017-17811,CVE-2017-17812,CVE-2017-17813,CVE-2017-17814,CVE-2017-17815,CVE-2017-17816,CVE-2017-17817,CVE-2017-17818,CVE-2017-17819,CVE-2017-17820,CVE-2017-18207,CVE-2017-3735,CVE-2017-3736,CVE-2017-3738,CVE-2018-0732,CVE-2018-1000168,CVE-2018-12115,CVE-2018-12116,CVE-2018-12121,CVE-2018-12122,CVE-2018-12123,CVE-2018-20406,CVE-2018-20852,CVE-2018-7158,CVE-2018-7159,CVE-2018-7160,CVE-2018-7161,CVE-2018-7167,CVE-2019-10160,CVE-2019-11709,CVE-2019-11710,CVE-2019-11711,CVE-2019-11712,CVE-2019-11713,CVE-2019-11714,CVE-2019-11715,CVE-2019-11716,CVE-2019-11717,CVE-2019-11718,CVE-2019-11719,CVE-2019-11720,CVE-2019-11721,CVE-2019-11723,CVE-2019-11724,CVE-2019-11725,CVE-2019-11727,CVE-2019-11728,CVE-2019-11729,CVE-2019-11730,CVE-2019-11733,CVE-2019-11735,CVE-2019-11736,CVE-2019-11738,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11747,CVE-2019-11748,CVE-2019-11749,CVE-2019-11750,CVE-2019-11751,CVE-2019-11752,CVE-2019-11753,CVE-2019-11757,CVE-2019-11758,CVE-2019-11759,CVE-2019-11760,CVE-2019-11761,CVE-2019-11762,CVE-2019-11763,CVE-2019-11764,CVE-2019-13173,CVE-2019-15903,CVE-2019-5010,CVE-2019-5737,CVE-2019-9511,CVE-2019-9512,CVE-2019-9513,CVE-2019-9514,CVE-2019-9515,CVE-2019-9516,CVE-2019-9517,CVE-2019-9518,CVE-2019-9636,CVE-2019-9811,CVE-2019-9812,CVE-2019-9947
Sources used:
SUSE Linux Enterprise Server 11-SP4-LTSS (src):    MozillaFirefox-68.2.0-78.51.4, MozillaFirefox-branding-SLED-68-21.9.8, firefox-atk-2.26.1-2.8.4, firefox-cairo-1.15.10-2.13.4, firefox-gcc5-5.3.1+r233831-14.1, firefox-gcc8-8.2.1+r264010-2.5.1, firefox-gdk-pixbuf-2.36.11-2.8.4, firefox-glib2-2.54.3-2.14.7, firefox-gtk3-3.10.9-2.15.3, firefox-harfbuzz-1.7.5-2.7.4, firefox-libffi-3.2.1.git259-2.3.3, firefox-libffi-gcc5-5.3.1+r233831-14.1, firefox-pango-1.40.14-2.7.4, mozilla-nspr-4.21-29.6.1, mozilla-nss-3.45-38.9.3

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.