Lucene search
K

openSUSE Security Update : opera (openSUSE-2019-2107)

🗓️ 12 Dec 2019 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 41 Views

This update fixes multiple security vulnerabilities and issues in Opera version 63.0.3368.6

Code
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2019-2107.
#
# The text description of this plugin is (C) SUSE LLC.
#

include("compat.inc");

if (description)
{
  script_id(131991);
  script_version("1.1");
  script_cvs_date("Date: 2019/12/12");

  script_name(english:"openSUSE Security Update : opera (openSUSE-2019-2107)");
  script_summary(english:"Check for the openSUSE-2019-2107 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for opera fixes the following issues :

Opera was updated to version 63.0.3368.66 :

  - CHR-7525 Update chromium on desktop-stable-76-3368 to
    76.0.3809.132

  - DNA-74031 Download indicator doesn’t match
    progress

  - DNA-77042 Something went wrong message in crypto wallet
    in private window

  - DNA-79137 Crash at opera::installer::OptionsScreen::
    OnLanguageChanged()

  - DNA-79683 Installer crashes when showing progress

  - DNA-79757 Line divider under address bar disappears
    after opening and closing Bookmarks Bar

  - DNA-80012 Zoom popup appears each time clicking
    ‘heart’ icon

  - DNA-80110 Bug when changing the install path in
    installer

  - DNA-80417 [assistant] Crash at
    opera::avro::event_driven::StatSenderImpl::NetworkThread
    :: SetTrafficAllowed(bool)

  - DNA-80422 Continue shopping section is too close to
    Speed Dial tiles when tiles are big

  - DNA-80463 Add shadow to shopping tiles

  - DNA-78143 Load async resources before rendering the page

  - DNA-79102 Make AU to be always server IPC endpoint when
    new AU logic is enabled

  - DNA-80193 Magnifying glass icon doesn’t match the
    search box boundaries in settings and extensions

  - DNA-80416 Crash at
    opera::assistant::ProcessMonitorImpl::
    ObserveProcess(std::__1::basic_string const&,
    opera::assistant:: ProcessMonitor::Observer*)

  - DNA-79558 Add database for continue shopping feature

  - DNA-79560 Create hidden runtime flag #continue-shopping

  - DNA-79702 Create Continue Shopping service

  - DNA-79786 Fix database backend for deleting the partner
    offer

  - DNA-80193 Magnifying glass icon doesn’t match the
    search box boundaries in settings and extensions

  - DNA-80237 Prevent data collection when feature is off

  - DNA-80244 Introduce another feature flag for changing
    the default value of folded state

  - DNA-79558 Add database for continue shopping feature

  - DNA-79560 Create hidden runtime flag #continue-shopping

  - DNA-79702 Create Continue Shopping service

  - DNA-79786 Fix database backend for deleting the partner
    offer

  - DNA-80193 Magnifying glass icon doesn’t match the
    search box boundaries in settings and extensions

  - DNA-80237 Prevent data collection when feature is off

  - DNA-80244 Introduce another feature flag for changing
    the default value of folded state

  - DNA-79560 Create hidden runtime flag #continue-shopping

  - DNA-79702 Create Continue Shopping service

  - DNA-79786 Fix database backend for deleting the partner
    offer

  - DNA-80193 Magnifying glass icon doesn’t match the
    search box boundaries in settings and extensions

  - DNA-80237 Prevent data collection when feature is off

  - DNA-80244 Introduce another feature flag for changing
    the default value of folded state

  - DNA-79063 Address bar icons are hardly visible in
    private window in light mode

  - DNA-79274 No warning notification on quitting Opera with
    multiple tabs open after update

  - DNA-80103 Investigate best ICECC_THREADS for faster Mac
    builds

  - DNA-80105 O63 translations (08.08.2019)

  - DNA-80219 DCHECK at
    ExtensionDownloader::HandleManifestResults

  - DNA-80330 [My Flow] The QR code and connection code is
    not visible for some people

  - DNA-79569 Don’t provide default value for
    titleTextColor in opr.wallpapersAPI

  - DNA-80221 Change channel to “stable” in
    permissions features for wallpapersPrivate

  - DNA-80230 Promote O63 to stable"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected opera package.");
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:opera");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/09/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/09/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE15.1", reference:"opera-63.0.3368.66-lp151.2.6.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "opera");
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation