SuSE Update For Opera OpenSUSE-SU-2012:1481-1 (opera) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

This Opera 12.10 security update fixes following security issues: -an issue that could cause Opera not to correctly check for certificate revocation -an issue where CORS requests could incorrectly retrieve contents of cross origin pages -an issue where data URIs could be used to facilitate Cross-Site Scripting -a high severity issue, as reported by Gareth Heyes details will be disclosed at a later date -an issue where specially crafted SVG images could allow execution of arbitrary code -a moderate severity issue, as reported by the Google Security Group details will be disclosed at a later date Full changelog available at: http://www.opera.com/docs/changelogs/unix/1210

Affected

opera on openSUSE 12.1

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SLES10: Security update for festival
SLES10: Security update for IBM Java 1.5
SLES10: Security update for Linux kernel
SLES10: Security update for Linux kernel
SLES10: Security update for IBM Java 1.4.2

SuSE Update for opera openSUSE-SU-2012:1481-1 (opera)

Take action and discover your vulnerabilities