SuseOPENSUSE-SU-2021:0139-1Security update for opera (moderate)
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
An update that fixes 13 vulnerabilities is now available.
Description:
This update for opera fixes the following issues:
-
Update to version 73.0.3856.344
- CHR-8265 Update chromium on desktop-stable-87-3856 to 87.0.4280.141
- DNA-90625 [Mac] Crash at opera::TabView::
GetPaintData(opera::TabState) const - DNA-90735 Crash at opera::BrowserSidebarModel::GetItemVisible
(opera::BrowserSidebarItem const*) const - DNA-90780 Crash at extensions::CommandService::GetExtension
ActionCommand(std::__1::basic_string const&, extensions::
ActionInfo::Type, extensions::CommandService::QueryType,
extensions::Command*, bool*) - DNA-90821 Crash at opera::BrowserSidebarController::
Action(opera::BrowserSidebarItem const*,
opera::BrowserSidebarItemContentView*)
-
The update to chromium 87.0.4280.141 fixes following issues:
CVE-2021-21106, CVE-2021-21107, CVE-2021-21108, CVE-2021-21109,
CVE-2021-21110, CVE-2021-21111, CVE-2021-21112, CVE-2021-21113,
CVE-2020-16043, CVE-2021-21114, CVE-2020-15995, CVE-2021-21115,
CVE-2021-21116 -
Update to version 73.0.3856.329
- DNA-89156 Crash at content::RenderViewHostImpl::OnFocus()
- DNA-89731 [Mac] Bookmarks bar overlaps Babe section when hovering the
OMenu - DNA-90189 Music service portal logotypes are blurred on Win
- DNA-90336 add session data schema
- DNA-90399 Address bar dropdown suggestions overlap each other
- DNA-90520 Crash at absl::raw_logging_internal::RawLog(absl::
LogSeverity, char const*, int, char const*, οΏ½οΏ½οΏ½) - DNA-90538 Crash at extensions::CommandService::
GetExtensionActionCommand(std::__1::basic_string const&,
extensions::ActionInfo::Type, extensions::CommandService:: QueryType,
extensions::Command*, bool*) - DNA-90600 DonοΏ½οΏ½οΏ½t report workspace visibility, when functionality is
disabled. - DNA-90665 Collect music service statistics WP2
- DNA-90773 Bad translation from english to spanish in UI
- DNA-90789 Crash at opera::ThumbnailHelper::RunNextRequest()
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or βzypper patchβ.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:NonFree:
zypper in -t patch openSUSE-2021-139=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap NonFree | 15.2 | x86_64 | <Β - openSUSE Leap 15.2:NonFree (x86_64): | - openSUSE Leap 15.2:NonFree (x86_64):.x86_64.rpm |
Related
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C