PDA

View Full Version : Opera updates



AplusWebMaster
2011-12-06, 22:09
FYI...

Opera v11.60 released
- https://secunia.com/advisories/47077/
Last Update: 2011-12-09
Criticality level: Moderately critical
Impact: Hijacking, Unknown, Security Bypass, Exposure of sensitive information
Where: From remote...
For more information: https://secunia.com/advisories/46168/
... vulnerabilities are reported in versions prior to 11.60.
Solution: Update to version 11.60.
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/windows/1160/
http://www.opera.com/support/kb/view/1003/
http://www.opera.com/support/kb/view/1004/
http://www.opera.com/support/kb/view/1005/

- http://www.opera.com/browser/download/
___

- http://www.securitytracker.com/id/1026381
Updated: Dec 8 2011
Impact: Disclosure of system information, Modification of user information
Version(s): prior to 11.60...

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4683
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4684
CVSS Severity: 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4681
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4682
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4685
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4686
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4687
CVSS Severity: (MEDIUM)
Published: 12/07/2011

:fear:

AplusWebMaster
2012-01-24, 16:48
FYI...

Opera v11.61 released
- https://secunia.com/advisories/47686/
Release Date: 2012-01-24
Impact: Security Bypass, Exposure of sensitive information
Where: From remote
Solution: Update to version 11.61.
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/windows/1161/
Release date: 2012-01-24
http://www.opera.com/support/kb/view/1007/
Manipulation of framed content can allow cross-site scripting
Severity: High
http://www.opera.com/support/kb/view/1008/
Script events can be used to reveal the presence of local files
Severity: Low

:fear:

AplusWebMaster
2012-02-13, 19:53
FYI...

Opera 12 (Wahoo) snapshot...
- http://my.opera.com/desktopteam/blog/2012/02/10/core-dnt-mail-themes
February 10, 2012 - "This is an Opera 12 (Wahoo) snapshot... this build introduces quite a few fixes, changes and improvements...
Privacy: This Wahoo build adds support for Do Not Track, which allows browser users to opt out of being tracked on the web. It is currently disabled by default, but can be enabled...
WARNING: This is a development snapshot: It contains the latest changes, but may also have severe known issues, including crashes, and data loss situations. In fact, it may not work at all.
(More in the changelog)..."

11.62 snapshot...
- http://my.opera.com/desktopteam/blog/2012/02/10/new-11-62-snapshot
February 10, 2012

AplusWebMaster
2012-03-27, 23:19
FYI...

Opera v11.62 released
- https://secunia.com/advisories/48535/
Release Date: 2012-03-27
Criticality level: Highly critical
Impact: Security Bypass, Spoofing, System access
Where: From remote ...
Solution: Update to version 11.62...
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/windows/1162/
http://www.opera.com/support/kb/view/1010/
http://www.opera.com/support/kb/view/1011/
http://www.opera.com/support/kb/view/1012/
http://www.opera.com/support/kb/view/1013/
http://www.opera.com/support/kb/view/1014/

- http://h-online.com/-1485067
28 March 2012

:fear:

AplusWebMaster
2012-05-11, 16:54
FYI...

Opera v11.64 released
- https://secunia.com/advisories/49081/
Release Date: 2012-05-11
Criticality level: Highly critical
Impact: System access
Where: From remote
... vulnerability is reported in versions prior to 11.64.
Solution: Update to version 11.64.
Original Advisory: http://www.opera.com/support/kb/view/1016/
Severity: Critical...

Changelog
- http://www.opera.com/docs/changelogs/windows/1164/
2012-05-10 - Opera 11.64 is a recommended upgrade offering security and stability enhancements...

Download
- http://www.opera.com/browser/download/

:fear:

AplusWebMaster
2012-06-14, 18:04
FYI...

Opera v12.00 released
- https://secunia.com/advisories/49533/
Release Date: 2012-06-14
Impact: Security Bypass, Spoofing
Where: From remote...
Solution: Upgrade to version 12 or update to version 11.65 for Mac.
Original Advisory:
http://www.opera.com/docs/changelogs/windows/1200/
2012-06-14 - "Opera 12.00 is a recommended upgrade offering new and improved features, plus security and stability enhancements..."

- http://www.opera.com/support/kb/view/1022/
- http://www.opera.com/support/kb/view/1021/
- http://www.opera.com/support/kb/view/1020/
- http://www.opera.com/support/kb/view/1019/
- http://www.opera.com/support/kb/view/1018/

- http://www.opera.com/browser/download/?custom=yes
___

Do Not Track in Opera 12
- http://www.h-online.com/security/news/item/Do-Not-Track-arrives-in-Opera-12-1618631.html?view=zoom;zoom=2
15 June 2012

:fear:

AplusWebMaster
2012-08-02, 18:42
FYI...

Opera v12.01 released
- https://secunia.com/advisories/50044/
Release Date: 2012-08-02
Criticality level: Moderately critical
Impact: Cross Site Scripting, System access
Where: From remote
... vulnerabilities are reported in versions prior to 12.01 and 11.66 (Mac OS X only).
Solution: Update to version 12.01 or 11.66 (Mac OS X only).
Original Advisory:
http://www.opera.com/support/kb/view/1025/
http://www.opera.com/support/kb/view/1026/
http://www.opera.com/support/kb/view/1027/

> http://www.opera.com/docs/changelogs/windows/1201/
"... recommended upgrade offering security and stability enhancements..."

- http://www.opera.com/browser/download/?custom=yes

- http://www.securitytracker.com/id/1027337
Aug 2 2012
Impact: Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information, User access via network
Solution: The vendor has issued a fix (11.66, 12.01).
Version(s): prior to 12.01 ...
Vendor URL: http://www.opera.com/support/kb/view/1016/
Severity: Critical
___

- http://h-online.com/-1659121
2 August 2012

:fear:

AplusWebMaster
2012-08-30, 15:52
FYI...

Opera v12.02 released
- https://secunia.com/advisories/50381/
Release Date: 2012-08-30
Criticality level: Moderately critical
Impact: System access
Where: From remote...
Solution: Update to version 12.02 or 11.67 (Mac OS X only).
Original Advisory: http://www.opera.com/support/kb/view/1028/

- http://www.opera.com/support/kb/advisory/page1/

- http://www.opera.com/browser/download/?custom=yes

:fear:

AplusWebMaster
2012-11-06, 14:56
FYI...

Opera v12.10 released
- https://secunia.com/advisories/51183/
Release Date: 2012-11-06
Criticality level: Highly critical
Impact: Unknown, Security Bypass, Cross Site Scripting, System access
Where: From remote
... vulnerabilities are reported in versions prior to 12.10.
Solution: Update to version 12.10.
Original Advisory:
http://www.opera.com/docs/changelogs/unified/1210/
http://www.opera.com/support/kb/view/1030/
http://www.opera.com/support/kb/view/1031/
http://www.opera.com/support/kb/view/1033/

- http://help.opera.com/Windows/12.10/en/autoupdate.html
" To help keep your version of Opera up-to-date, with the latest features and important security and stability fixes, Opera includes an automatic update mechanism. The auto-update dialog appears after a recommended update has been released. The browser also checks for updates at regular intervals and displays this auto-update dialog as a reminder if you have not yet updated. It includes information about the update, and helps you to install it..."

> http://www.opera.com/browser/download/?custom=yes

:fear:

AplusWebMaster
2012-11-20, 16:00
FYI...

Opera v12.11 released
- https://secunia.com/advisories/51331/
Release Date: 2012-11-20
Criticality level: Highly critical
Impact: Exposure of sensitive information, System access
Where: From remote
... weakness and the vulnerability are reported in versions prior to 12.11.
Solution: Update to version 12.11.
Original Advisory
http://www.opera.com/docs/changelogs/unified/1211/
Release date: 2012-11-20 - Opera 12.11 is a recommended upgrade offering security and stability enhancements...
http://www.opera.com/support/kb/view/1036/
http://www.opera.com/support/kb/view/1037/

> http://www.opera.com/browser/download/?custom=yes

> http://help.opera.com/Windows/12.10/en/autoupdate.html

:fear:

AplusWebMaster
2012-12-19, 15:37
FYI...

Opera v12.12 released
- http://www.opera.com/docs/changelogs/unified/1212/
2012-12-18 - "Opera 12.12 is a recommended upgrade offering security and stability enhancements..."

Security:
- Fixed an issue where malformed GIF images could allow execution of arbitrary code; see our advisory:
http://www.opera.com/support/kb/view/1038/
- Fixed an issue where repeated attempts to access a target site could trigger address field spoofing... see our advisory:
http://www.opera.com/support/kb/view/1040/
- UNIX-only: Fixed an issue where private data could be disclosed to other computer users, or be modified by them... see our advisory:
http://www.opera.com/support/kb/view/1039/

- https://secunia.com/advisories/51462/
Last Update: 2012-12-18
Criticality level: Highly critical
Impact: Spoofing, Privilege escalation, System access
Where: From remote
Solution: Update to version 12.12.
___

- http://h-online.com/-1771993
19 Dec 2012

:fear:

AplusWebMaster
2013-01-31, 16:59
FYI...

Opera v12.13 released
- https://secunia.com/advisories/52005/
Release Date: 2013-01-30
Criticality level: Highly critical
Impact: Unknown, System access
Where: From remote
... vulnerabilities are reported in versions prior to 12.13.
Solution: Update to version 12.13.
Original Advisory: http://www.opera.com/docs/changelogs/unified/1213/
"... a recommended upgrade offering security and stability enhancements..."

> http://www.opera.com/browser/download/?custom=yes

> http://help.opera.com/Windows/12.10/en/autoupdate.html
___

- http://h-online.com/-1794826
31 Jan 2013

:fear:

AplusWebMaster
2013-02-06, 10:20
FYI...

Opera v12.14 released
- http://www.opera.com/docs/changelogs/unified/1214/
Release date: 2013-02-05
Opera 12.14 is a recommended upgrade offering security and stability enhancements.
Fixes and Stability Enhancements since Opera 12.13
General and User Interface: Update addresses a re-occuring crash, allowing users to update two or more extensions at one time.

> http://www.opera.com/browser/download/?custom=yes

> http://help.opera.com/Windows/12.10/en/autoupdate.html
___

Opera moves to WebKit
- http://my.opera.com/haavard/blog/2013/02/13/webkit
February 13, 2013

.

AplusWebMaster
2013-04-04, 17:50
FYI...

Opera v12.15 released
- https://secunia.com/advisories/52859/
Release Date: 2013-04-04
Criticality level: Moderately critical
Impact: Unknown, Exposure of sensitive information
Where: From remote
... weakness and a vulnerability are reported in version 12.14. Prior versions may also be affected.
Solution: Update to version 12.15.
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/unified/1215/
"Release date: 2013-04-04: Opera 12.15 is a recommended upgrade offering security and stability enhancements..."

- http://www.opera.com/security/advisory/1046

- http://www.opera.com/security/advisory/1047
___

> http://www.opera.com/browser/download/?custom=yes

> http://help.opera.com/Windows/12.10/en/autoupdate.html

:fear:

AplusWebMaster
2013-06-27, 15:29
FYI...

Opera users received malicious update
- http://h-online.com/-1897805
27 June 2013 - "In a post on the browser vendor's security blog*, Opera employee Sigbjørn Vik has informed users of a security breach at the company during which unknown attackers have gotten control of an expired code signing certificate. The attackers used that certificate to sign malware and deliver it to thousands of Opera users through the browser's automatic updating function. Opera has advised users to update to a new version of its browser as soon as it is released. The attackers had accessed Opera's corporate network on 19 June between 1:00 am and 1:36 am CET. The company says that their systems have been cleaned and that there is no evidence of user data having been copied. Opera is working with relevant authorities to investigate the attack. Users who had received the malicious update might have installed it automatically and subsequently got infected by the included trojan. A scan with the VirusTotal service** reveals that more than half of the anti-virus engines used by the scanner can currently detect the trojan. Opera says it will soon release an updated version of their browser which will use a new code signing certificate "to be on the safe side"."
* http://my.opera.com/securitygroup/blog/2013/06/26/opera-infrastructure-attack
June 26, 2013

** https://www.virustotal.com/en/file/8ecbca0de44c82d1c7ffced288aa68c1247bb1255693cd1c5747fb6cef394b43/analysis/
___

Opera 12.16 released
- http://www.opera.com/docs/changelogs/unified/1216/
2013-07-04 - "Opera 12.16 is a recommended upgrade offering security and stability enhancements."

- http://www.opera.com/security/advisory/1048
July 4, 2013 - "Opera has released Opera Desktop 12.16 signed with a new certificate..."

> http://www.opera.com/browser/download/?custom=yes

> http://help.opera.com/Windows/12.10/en/autoupdate.html

:fear::fear: :mad:

AplusWebMaster
2013-08-28, 17:12
FYI...

Opera v16.00 released
- https://secunia.com/advisories/54514/
Release Date: 2013-08-28
Criticality: Moderately Critical
Where: From remote
Impact: Unknown
... vulnerabilities are caused due to a bundled vulnerable version of Chromium. No further information is currently available.
The vulnerabilities are reported in versions prior to 16.00.
Solution: Upgrade to version 16.00.
Original Advisory: Opera:
- http://www.opera.com/docs/changelogs/unified/1600/
Release date: 2013-08-27 - "Opera 16 includes updates to the latest Chromium release, version 29..."

:fear::fear:

AplusWebMaster
2013-10-08, 16:30
FYI...

Opera v17.00 released
- https://secunia.com/advisories/55163/
Release Date: 2013-10-08
Criticality: Moderately Critical
Where: From remote
Impact: Unknown...
... vulnerabilities are reported in versions prior to 17.00.
Solution: Upgrade to version 17.00.
Original Advisory:
Opera: http://www.opera.com/docs/changelogs/unified/1700/
Release date: 2013-10-08 - "Opera 17 includes updates to the latest Chromium release, version 30..."

:fear:

AplusWebMaster
2013-11-19, 15:17
FYI...

Opera 18 released
- https://secunia.com/advisories/55720/
Release Date: 2013-11-19
Criticality: Moderately Critical
Where: From remote
Impact: Unknown ...
... vulnerabilities are reported in versions prior to 18.00.
Solution: Upgrade to version 18.00.
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/unified/1800/
2013-11-19 - "... includes updates to the latest Chromium release, version 31..."

:fear:

AplusWebMaster
2014-01-28, 15:12
FYI...

Opera 19.00 released
- https://secunia.com/advisories/56649/
Release Date: 2014-01-28
Criticality: Moderately Critical
Where: From remote
Impact: Unknown
CVE Reference(s): No CVE references.
... vulnerabilities are reported in versions prior to 19.00.
Solution: Upgrade to version 19.00.
Original Advisory: Opera:
http://www.opera.com/docs/changelogs/unified/1900/
2014-01-28 - "... includes updates to the latest Chromium release, version 32..."

:fear:

AplusWebMaster
2014-03-05, 14:17
FYI...

Opera 20 released
- https://secunia.com/advisories/57242/
Release Date: 2014-03-05
Criticality: Moderately Critical
Where: From remote
Impact: Unknown...
CVE Reference: No CVE references...
... vulnerabilities are caused due to a bundled vulnerable version of Chromium...
... vulnerabilities are reported in versions prior to 20.00.
Solution: Upgrade to version 20.00.
Original Advisory:
- http://www.opera.com/docs/changelogs/unified/2000/
"... Opera 20 includes updates to the latest Chromium release, version 33..."

:fear:

AplusWebMaster
2014-05-06, 23:12
FYI...

Opera 21.0.1432.48 released
- http://blogs.opera.com/desktop/2014/04/opera-next-update-21-0-1432-48/

Release notes
- http://www.opera.com/docs/changelogs/unified/2100/
2014-05-06

Download
- http://www.opera.com/computer/windows

Changelog
- http://blogs.opera.com/desktop/changelog21/

- https://secunia.com/advisories/58416/
Release Date: 2014-05-06
Criticality: Moderately Critical

:fear:

AplusWebMaster
2014-06-03, 14:39
FYI...

Opera 22 released
- https://secunia.com/advisories/59006/
Release Date: 2014-06-03
Criticality: Moderately Critical
Where: From remote
Impact: Unknown
... vulnerabilities are reported in versions prior to 22.
Solution: Upgrade to version 22.
Original Advisory:
- http://www.opera.com/docs/changelogs/unified/2200/
Release date: 2014-06-03: "... includes updates to the latest Chromium/Blink release, version 35..."
___

- http://www.securityfocus.com/bid/57121/info
Updated: Jun 16 2014
Credit: The vendor reported this issue...
Opera Web Browser prior to 12.10 SSL Certificate Validation Security Weakness...

- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6461 - 5.0

Current version: Opera 22: http://www.opera.com/docs/changelogs/unified/2200/

:fear:

AplusWebMaster
2014-07-22, 17:19
FYI...

Opera 23 released
- https://secunia.com/advisories/60283/
Release Date: 2014-07-22
Criticality: Moderately Critical
Where: From remote
Impact: Unknown ...
... vulnerabilities are caused due to a bundled, vulnerable version of Chromium...
Original Advisory:
- http://www.opera.com/docs/changelogs/unified/2300/
"... includes updates to the latest Chromium/Blink release, version 36."

:fear:

AplusWebMaster
2014-09-02, 15:39
FYI...

Opera 24 released
- http://www.opera.com/docs/changelogs/unified/2400/
2014-09-02 - "... updates to the latest Chromium/Blink release, version 37...
Improvements since Opera 23:
- Stability enhancements.
- Enhanced support for Chromium extensions.
- Fixes and enhancements for how Opera handles HiDPI on Windows."

:fear:

AplusWebMaster
2014-10-16, 14:46
FYI...

Opera 25 released
- http://www.opera.com/docs/changelogs/unified/2500/
2014-10-15
Improvements since Opera 24:
- Stability enhancements.
- Enhanced support for Chromium extensions.
- Memory and loading improvements for the start page.
- Fixes and enhancements for how Opera handles HiDPI video and MP3 audio.
- Network installation for Mac.
- Enhancement for the Opera tile icon on Windows 8.

- https://secunia.com/advisories/60965/
Release Date: 2014-10-16
... vulnerabilities are caused due to a bundled, vulnerable version of Chromium. No further information is currently available.
The vulnerabilities are reported in versions prior to 25.
Solution: Upgrade to version 25.
___

Note: Opera market share is reported at under 1% for Sep 2014:
- http://www.netmarketshare.com/browser-market-share.aspx?qprid=0&qpcustomd=0
Posts in this thread will be made when it rises above that mark.

:fear: