The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption.
secunia.com/advisories/34294
security.gentoo.org/glsa/glsa-200903-30.xml
securityreason.com/securityalert/4791
www.nruns.com/security_advisory_opera_html_parsing_code_execution.php
www.opera.com/docs/changelogs/linux/963/
www.opera.com/support/kb/view/921/
www.securityfocus.com/archive/1/499315/100/0/threaded
www.securitytracker.com/id?1021460