remote code execution in opera

2008-02-2911:34:16

lists.opensuse.org

0.016 Low

EPSS

Percentile

86.0%

JSON

This is a version update for Opera to version 9.26 to fix: - CVE-2008-1080: Fixed an issue where simulated text inputs could trick users into uploading arbitrary files, as reported by Mozilla. - CVE-2008-1081: Image properties can no longer be used to execute scripts, as reported by Max Leonov. - CVE-2008-1082: Fixed an issue where the representation of DOM attribute values could allow cross site scripting, as reported by Arnaud.lb.

Solution

There is no known workaround, please install the update packages.

OSVersionArchitecturePackageVersionFilename
openSUSE10.3ppcopera< 9.26-0.1opera-9.26-0.1.ppc.rpm
openSUSE10.3i586opera< 9.26-0.1opera-9.26-0.1.i586.rpm
openSUSE10.1ppcopera< 9.26-0.1opera-9.26-0.1.ppc.rpm
openSUSE10.2i586opera< 9.26-0.1opera-9.26-0.1.i586.rpm
openSUSE10.2x86_64opera< 9.26-0.1opera-9.26-0.1.x86_64.rpm
openSUSE10.2ppcopera< 9.26-0.1opera-9.26-0.1.ppc.rpm
openSUSE10.1x86_64opera< 9.26-0.1opera-9.26-0.1.x86_64.rpm
openSUSE10.3x86_64opera< 9.26-0.1opera-9.26-0.1.x86_64.rpm
openSUSE10.1i586opera< 9.26-0.1opera-9.26-0.1.i586.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	10.3	ppc	opera	< 9.26-0.1	opera-9.26-0.1.ppc.rpm
openSUSE	10.3	i586	opera	< 9.26-0.1	opera-9.26-0.1.i586.rpm
openSUSE	10.1	ppc	opera	< 9.26-0.1	opera-9.26-0.1.ppc.rpm
openSUSE	10.2	i586	opera	< 9.26-0.1	opera-9.26-0.1.i586.rpm
openSUSE	10.2	x86_64	opera	< 9.26-0.1	opera-9.26-0.1.x86_64.rpm
openSUSE	10.2	ppc	opera	< 9.26-0.1	opera-9.26-0.1.ppc.rpm
openSUSE	10.1	x86_64	opera	< 9.26-0.1	opera-9.26-0.1.x86_64.rpm
openSUSE	10.3	x86_64	opera	< 9.26-0.1	opera-9.26-0.1.x86_64.rpm
openSUSE	10.1	i586	opera	< 9.26-0.1	opera-9.26-0.1.i586.rpm

0.016 Low

EPSS

Percentile

86.0%

JSON

Related for SUSE-SA:2008:011