FYI...

Opera v9.27 released
- http://www.opera.com/download/
April 3, 2008

Release Notes
- http://www.opera.com/docs/changelogs/windows/927/#security
"This release is a recommended security and stability upgrade..."

- http://www.securityfocus.com/bid/28585/solution
Updated: Apr 12 2008 - "...The vendor released Opera 9.27 to address these issues..."

- http://www.opera.com/support/search/view/881/
- http://www.opera.com/support/search/view/882/

- http://secunia.com/advisories/29662/
Release Date: 2008-04-03
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status:Vendor Patch
...Successful exploitation of the vulnerabilities may allow execution of arbitrary code. The vulnerabilities are reported in versions prior to 9.27.
Solution: Update to version 9.27.

:fear:

FYI...

Opera 9.50 released
- http://www.opera.com/download

- http://www.opera.com/docs/changelogs/windows/950/
"...Opera 9.5 is a recommended security and stability upgrade..."

- http://www.opera.com/docs/changelogs/windows/950/#security
Security:
* Fixed an issue where certain characters could obscure the page address, as reported by Tony Thomas...
* Solved an issue where Images could be read cross-domain with canvas, as reported by Philip Taylor...
* Pages held in frames are no longer able to change the location of pages in unrelated frames on the parent page...
* Improved Fraud Protection now includes advanced malware prevention and upgraded phishing detection technologies...
* Added support for Extended Validation (EV) certificates.
* Added automatic downloading of trusted root certificates when required.
* Disabled SSL v2 and weak ciphers.
* Improvements made to certificate handling, the new certificate repository and the certificates UI.
* Introduced a new security notification scheme in the address field:
o gold lock on green field for secure sites with Extended Validation
o silver lock on yellow field for regular secure sites
o question mark on gray field for HTTPS sites with issues
o no notification for normal sites
o fraud warning on red field for blacklisted sites
* Opera now distinguishes between local servers on localhost, intranet servers, and remote servers on the Internet.
o Local servers can use remote resources, but not vice versa...

- http://secunia.com/advisories/30636/
Release Date: 2008-06-12
Critical: Less critical
Impact: Spoofing, Exposure of sensitive information
Where: From remote
Solution Status: Vendor Patch
...The vulnerabilities are reported in versions prior to 9.5...
Solution: Update to version 9.5...
http://www.opera.com/download/

:fear:

FYI...

Opera 9.51 released
- http://www.opera.com/download/
03.07.2008

Release Notes:
- http://www.opera.com/docs/changelogs/windows/951/#security
"Opera 9.51 is a recommended security and stability upgrade...
Miscellaneous
* Corrected a stability issue with Yahoo! Mail.
* TinyMCE 2.1.x editor now works properly.
* Printing of chat items has been improved.
* Reconnection of the IRC client has been adjusted and improved.
* Menus on deviantart.com now work properly.
* Eliminated unwanted line breaks in rich text editors.
Windows-specific changes
* Fixed a resource leak in the transfer window that could cause visual paint problems and other related problems.
* Command line parameters must now be specified before any URLs on the command line...

- http://www.opera.com/support/search/view/887/

- http://secunia.com/advisories/30937/
Release Date: 2008-07-03
Critical: Highly critical...

:fear:

FYI...

Opera 9.52 released
- http://www.opera.com/download/

Changelog
- http://www.opera.com/docs/changelogs/windows/952/
Opera 9.52 is a recommended security and stability upgrade...

Security advisories:
- http://www.opera.com/support/search/view/892/
- http://www.opera.com/support/search/view/893/
- http://www.opera.com/support/search/view/894/
- http://www.opera.com/support/search/view/895/
- http://www.opera.com/support/search/view/896/
- http://www.opera.com/support/search/view/897/

- http://secunia.com/advisories/31549/
Release Date: 2008-08-20
Critical: Highly critical
Impact: Security Bypass, Spoofing, Exposure of sensitive information, DoS, System access
Where: From remote
Solution: Update to version 9.52....

:fear:

FYI...

Opera v9.60 released
- http://www.opera.com/download/

Changelog:
- http://www.opera.com/docs/changelogs/windows/960/

- http://www.opera.com/support/search/view/901/
# Fixed an issue where specially crafted addresses could execute arbitrary code...

- http://www.opera.com/support/search/view/902/
# Java applets can no longer be used to read sensitive information...

- http://secunia.com/advisories/32177/
Release Date: 2008-10-08
Critical: Highly critical

:fear:

FYI...

Opera multiple vulns - update available
- http://secunia.com/advisories/32299/
Release Date: 2008-10-21
Critical: Moderately critical
Impact: Security Bypass, Cross Site Scripting, Exposure of sensitive information
Where: From remote
Solution Status: Vendor Patch...
The vulnerabilities are reported in versions prior to 9.61.
Solution: Update to version 9.61.
http://www.opera.com/download/ ...
Original Advisory:
http://www.opera.com/support/search/view/903/
http://www.opera.com/support/search/view/904/
http://www.opera.com/support/search/view/905/ ...

Changelog
- http://www.opera.com/docs/changelogs/windows/961/

:fear:

FYI...

Opera v9.62 released
- http://www.opera.com/download/
2008-10-30

Changelog:
- http://www.opera.com/docs/changelogs/windows/962/

- http://www.opera.com/support/search/view/906/
History Search can be used to execute arbitrary code...

- http://www.opera.com/support/search/view/907/
The links panel can allow cross-site scripting...

- http://secunia.com/advisories/32452/
Release Date: 2008-10-30
Critical: Highly critical
Impact: Cross Site Scripting, System access
Where: From remote
Solution Status: Vendor Patch...

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4795
Last revised: 10/31/2008

:fear:

FYI...

Opera v9.63 released
- http://www.opera.com/download/
12.17.2008

Changelog:
- http://www.opera.com/docs/changelogs/windows/963/

Security fixes:
- http://www.opera.com/support/search/view/920/
- http://www.opera.com/support/search/view/921/
- http://www.opera.com/support/search/view/922/
- http://www.opera.com/support/search/view/923/
- http://www.opera.com/support/search/view/924/
- SVG images embedded using <img> tags can no longer execute Java or plugin content...
- Opera now imports .p12 private certificates...

- http://secunia.com/advisories/32752

:fear: