OPENSUSE-SU-2022:10218-1 Security update for opera

This update for opera fixes the following issues: Update to 93.0.4585.11: - CHR-9051 Update chromium on desktop-stable-107-4585 to 107.0.5304.88 - DNA-95965 Add support for more UD TLDs - DNA-102960 Replace messengers icons - DNA-102964 Crash at -FramedBrowserWindow sendEvent: - DNA-103125...

OPENSUSE-SU-2020:2359-1 Security update for opera

This update for opera fixes the following issues: - Update to version 73.0.3856.284 - CHR-8225 Update chromium on desktop-stable-87-3856 to 87.0.4280.88 - DNA-88454 Background of snap area above visible scrolled viewport is not captured - DNA-89749 Implement clientcapabilities support for Flow /...

Thanks to the researchers 2015

Research Thanks to the researchers 2015 Share January 16th, 2015 At Opera Software, we run a large number of websites for our products and services, and we like to give credit to the researchers and website testers who offer their assistance to help us tighten the security of those websites. We...

MGASA-2013-0202 Updated opera packages replace code signing certificate

Opera 12.16 contains a replaced code signing certificate. Opera Software recently experienced an attack on the internal infrastructure. Following best practices, Opera Software is replacing signing certificates in Opera with newly issued certificates. Certificates in Opera include the code signin...

Replaced code signing certificate

Opera Software recently experienced an attack on the internal infrastructure. Following best practices, Opera Software is replacing signing certificates in Opera with newly issued certificates. Certificates in Opera include the code signing certificate for desktop binaries and the signing...

Stolen Opera Code-Signing Certificate Used to Sign Malware

Opera Software said it was able to contain the impact of a security breach that resulted in the theft of an expired code-signing certificate used to sign malware distributed to Windows users during a 36-minute stretch on June 19. Opera developer Sigbjorn Vik said the browser maker was victimized ...

Small windows can be used in several ways to trick users into executing downloads

When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end...

opera -- multiple vulnerabilities

Opera software reports: Fixed a moderately severe issue; details will be disclosed at a later date Fixed an issue that could allow pages to set cookies or communicate cross-site for some top level domains; see our advisory Improved handling of certificate revocation corner cases Added a fix for a...

Opera Web浏览器多个远程拒绝服务漏洞

BUGTRAQ ID: 48556 CVE ID: CVE-2011-2611,CVE-2011-2612,CVE-2011-2613,CVE-2011-2614,CVE-2011-2615,CVE-2011-2616,CVE-2011-2617,CVE-2011-2618,CVE-2011-2619,CVE-2011-2620,CVE-2011-2621,CVE-2011-2622,CVE-2011-2623,CVE-2011-2624,CVE-2011-2625,CVE-2011-2626,CVE-2011-2627...

Opera Web Browser未明跨站脚本漏洞

Bugtraq ID: 48500 Opera是一款流行的WEB浏览器。 当处理"data" URL机制时存在错误，没有针对URI做强制的安全上下文继承，允许URI与其他页和源代码页面交互。可造成跨站脚本攻击。 Opera Software Opera Web Browser 11.11 Opera Software Opera Web Browser 11.01 Opera Software Opera Web Browser 11.00 Opera Software Opera Web Browser 10.63 Opera Software Opera Web Browser...

Opera Web Browser "SELECT" HTML标签远程内存破坏漏洞

BUGTRAQ ID: 47764 CVE ID: CVE-2011-1824 Opera Web Browser是Opera Software开发的网络浏览器和互联网软件套装。 Opera Web Browser在实现上存在"SELECT" HTML标签远程内存破坏漏洞，远程攻击者可利用此漏洞使应用程序崩溃，造成拒绝服务攻击或可造成任意代码执行。 Opera Software Opera 11.10 Opera Software Opera 10.61 厂商补丁： Opera Software -------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下...

Opera Update Closes Severe Heap Overflow Hole

Opera Software has released version 10.61 of the Opera web browser to fix a high severity hole. The issue was a heap overflow in the HTML5 canvas when performing some painting operations, which could in some cases be used to execute code. Read the full article. The H Security...

Unexpected changes in tab focus can be used to run programs from the Internet

Tabs may be used to obscure a download dialog that is visible in another tab. The dialog will allow the user to choose to run downloaded executables directly. If the tab is closed or hidden at the moment that a user was about to click, they can end up clicking on the buttons in the dialog, causin...

News feed preview can subscribe to feeds without interaction – Opera Security Advisories

News feed preview can subscribe to feeds without interaction – Opera Security Advisories OPCOM Team | August 12, 2010 Severity Low Description When Opera is previewing a news feed, certain types of content do not have their scripts removed correctly. These scripts are able to subscribe the user t...

Opera Software Releases Opera 10.53

Opera Software has released Opera 10.53 to address a vulnerability. Exploitation of this vulnerability may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review the Opera Software security advisory related to this vulnerability and upgrade to Opera 10....

Opera Software (browser)

Opera before 9.64 allows remote attackers to execute arbitrary code via a crafted JPEG image that triggers memory corruption...

Sites using revoked intermediate certificates might be shown as secure – Opera Security Advisories

Sites using revoked intermediate certificates might be shown as secure – Opera Security Advisories OPCOM Team | August 29, 2009 Summary Opera does not check the revocation status for intermediate certificates not served by the server. If the intermediate is revoked, this might not impact the...

多个浏览器HTTPS内容上下文中的HTTP资源安全绕过漏洞

Bugraq ID: 35403 CVE ID：CVE-2009-2065 CVE-2009-2064 CVE-2009-2066 CVE-2009-2067 CNCVE ID：CNCVE-20092065 CNCVE-20092064 CNCVE-20092066 CNCVE-20092067 当页面通过不安全方法对安全内容请求资源进行操作时不正确显示警告，可导致绕过多个WEB浏览器安全限制。 攻击者可以利用这个漏洞进行钓鱼攻击或获得敏感信息。不过要利用此漏洞，攻击者必须截获或控制网络通信，如通过中间人，DNS毒药等攻击。 如下浏览器受此漏洞影响： Microsoft Internet...

TLS certificates can be used to execute arbitrary code – Opera Security Advisories

TLS certificates can be used to execute arbitrary code – Opera Security Advisories OPCOM Team | February 13, 2009 Severity Highly Severe Problem Description When connecting to a TLS-protected website, Opera parses the X.509 certificate. If a site uses a specially crafted Subject Alternative Name ...

Feed links can link to local files – Opera Security Advisories

Feed links can link to local files – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Less Severe Problem Description As a security precaution, Opera does not allow Web pages to link to files on the user’s local disk. However, a flaw exists that allows Web pages to link to feed...