OPENSUSE-SU-2020:0402-1

Vulnerability from csaf_opensuse - Published: 2020-03-29 13:51 - Updated: 2020-03-29 13:51
Summary
Security update for opera

Notes

Title of the patch
Security update for opera
Description of the patch
This update for opera fixes the following issues: Update to version 67.0.3575.97 - DNA-84063 Open URL in new tab with ‘Go to web address’ in search/copy popup and right mouse click context menu - DNA-84780 Search in Search and Copy popup opens tab in wrong position from popup window - DNA-84786 Crash at Browser::PasteAndGo(std::__1::basic_string const&, WindowOpenDisposition) - DNA-84815 Crash at TabStripModel::GetIndexOfWebContents (content::WebContents const*) - DNA-84937 [Mac] Workspace switching is slow with a lot of tabs opened - DNA-85159 Sidebar-setup not refreshed correctly after signing out from sync Update to version 67.0.3575.79 - CHR-7804 Update chromium on desktop-stable-80-3575 to 80.0.3987.132 - DNA-83766 Opera Ad Blocker extension state is not updated when changing it - DNA-83966 Enable kFeatureSuggestionScoringImproved on all the streams - DNA-84159 Settings – list of workspaces in the settings isn’t updated after reordering - DNA-84396 Inline autocomplete not working when SD becomes the top-scored suggestion - DNA-84711 Wrong autocomplete address for https sites - DNA-84741 No amazon partner extension displayed - DNA-84743 Crash at ExtensionsToolbarContainer::UndoPopOut() - DNA-84776 Bookmarks not fully displayed in Bookmarks Panel - DNA-84817 Crash at Browser::IsSearchAndCopyPopupEnabled() - DNA-84836 Broken video playback in some cases - DNA-84837 Audio decoder broken although available on Windows 7 - DNA-84860 [Mac] Address field not highlighted on hover - DNA-84889 [desktop-stable-80-3575] There’re no basic settings - DNA-84910 Fix output type selection of SW H.264 decoder - DNA-84938 Prepare stable build with Yx 05 edition - DNA-84969 Address bar dropdown launches HTTP GETs for every autocomplete Update to version 67.0.3575.53 - CHR-7792 Update chromium on desktop-stable-80-3575 to 80.0.3987.122 - DNA-84024 ‘Save all Tabs in Speed Dial Folder’ doesn’t work on main context menu - DNA-84056 Submenus are not scrollable - DNA-84061 Expanded bookmark menu overlaps the whole toolbar - DNA-84277 Whole text should be visible - DNA-84412 Dragging tab to different place activates another tab - DNA-84492 Disable any notifications for “default browser” from sweetlabs builds - DNA-84691 Crash when trying to open sidebar context menu - Update to version 67.0.3575.31 - DNA-84077 Hide seek and timer controls in video pop-out for YouTube live streams - DNA-84639 Promote O67 to stable - Complete Opera 67.0 changelog at: https://blogs.opera.com/desktop/changelog-for-67/ Update to version 66.0.3515.103 - DNA-83528 UnpackTest.CanUnpackTarXzFile test fails on OSX 10.15+ - DNA-83568 Add test driver perftests - DNA-84335 [Linux] Widevine is not working due to changed path of libwidevinecdm.so - DNA-84439 Opera extensions update requests are sent to chrome instead of opera servers Update to version 66.0.3515.72 - DNA-79691 Unable to play video on Netflix right after Opera installation - DNA-82102 Wrong cursor and X color of the search fields on Bookmark/History sidebar panels - DNA-82722 Google Translator blocks PDF viewer - DNA-83407 Crash at static void `anonymous namespace”::PureCall() - DNA-83530 Bad colors in Personal news when dark theme turned on - DNA-83531 Dragging speed dial root folders in bookmarks sidebar makes duplicates - DNA-83542 Fix background tabs loading issues - DNA-83806 Crash at opera::RichHintDisplayHandlerViews:: OnWidgetDestroying(views::Widget*) - DNA-83882 Crash at base::Value::Clone() - DNA-84007 Accessibility elements visible on pages after first navigation on Mac Update to version 66.0.3515.44 - CHR-7734 Update chromium on desktop-stable-79-3515 to 79.0.3945.130 - DNA-82635 [Mac] Fix crash when opening power save popup twice - DNA-83587 Fix Crash at opera::ThumbnailHelper::ThumbnailRequest::PopNextFrameToPaint() - DNA-83698 Unregister extensions keybindings when sidebar is hidden - DNA-83757 Stop making thumbnail after history onboarding will show Update to version 66.0.3515.36 - CHR-7717 Update chromium on desktop-stable-79-3515 to 79.0.3945.117 - DNA-81359 Translate “Speed Dials” folder in bookmarks panel - DNA-82627 Unify & streamline tooltip color processing across Opera. - DNA-82800 Enable kFeatureTurnOnFeaturesDownloadedByInstallerOnUpdates on all streams - DNA-83190 Record SwitchToFullSite events on icon clicks. - DNA-83496 Check if history-panel is enabled before showing onboarding. - DNA-83545 Fix a crash in adblocker rule update - DNA-83583 [Mac] Bookmark popup too bright in dark mode - DNA-83608 Set “plat” metadata in crash reports from Linux. Update to version 66.0.3515.27 - DNA-82683 Bookmarks menu is not readable in dark mode after hovering - DNA-83139 [macOS] screenshot is resized - DNA-83204 [Mac] Anchor onboarding widget to history icon on sidebar - DNA-83205 [Mac] Popup looks bad with mode change - DNA-83351 Enable feature on stable/beta - DNA-83366 [Mac] Onboarding popup doesn’t follow the browser window - DNA-83402 Promote O66 to stable - Complete Opera 66.0 changelog at: https://blogs.opera.com/desktop/changelog-for-66/ Update to version 65.0.3467.69 - DNA-82647 Tab icons mixed after Tab closing - DNA-82919 Update wrapper to skip package types when creating repo - DNA-82967 [Mac] Opera crashes on dragging the SSL icon on the URL Bar
Patchnames
openSUSE-2020-402
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
To clipboard 

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for opera",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for opera fixes the following issues:\n\nUpdate to version 67.0.3575.97\n\n- DNA-84063 Open URL in new tab with \u2018Go to web address\u2019 in\n  search/copy popup and right mouse click context menu\n- DNA-84780 Search in Search and Copy popup opens tab in wrong\n  position from popup window\n- DNA-84786 Crash at Browser::PasteAndGo(std::__1::basic_string\n  const\u0026, WindowOpenDisposition)\n- DNA-84815 Crash at TabStripModel::GetIndexOfWebContents\n  (content::WebContents const*)\n- DNA-84937 [Mac] Workspace switching is slow with a lot of\n  tabs opened\n- DNA-85159 Sidebar-setup not refreshed correctly after\n  signing out from sync\n\nUpdate to version 67.0.3575.79\n\n- CHR-7804 Update chromium on desktop-stable-80-3575 to\n  80.0.3987.132\n- DNA-83766 Opera Ad Blocker extension state is not updated when\n  changing it\n- DNA-83966 Enable kFeatureSuggestionScoringImproved on all the\n  streams\n- DNA-84159 Settings \u2013 list of workspaces in the settings isn\u2019t\n  updated after reordering\n- DNA-84396 Inline autocomplete not working when SD becomes\n  the top-scored suggestion\n- DNA-84711 Wrong autocomplete address for https sites\n- DNA-84741 No amazon partner extension displayed\n- DNA-84743 Crash at ExtensionsToolbarContainer::UndoPopOut()\n- DNA-84776 Bookmarks not fully displayed in Bookmarks Panel\n- DNA-84817 Crash at Browser::IsSearchAndCopyPopupEnabled()\n- DNA-84836 Broken video playback in some cases\n- DNA-84837 Audio decoder broken although available on Windows 7\n- DNA-84860 [Mac] Address field not highlighted on hover\n- DNA-84889 [desktop-stable-80-3575] There\u2019re no basic settings\n- DNA-84910 Fix output type selection of SW H.264 decoder\n- DNA-84938 Prepare stable build with Yx 05 edition\n- DNA-84969 Address bar dropdown launches HTTP GETs for every\n  autocomplete\n\nUpdate to version 67.0.3575.53\n\n- CHR-7792 Update chromium on desktop-stable-80-3575 \n  to 80.0.3987.122\n- DNA-84024 \u2018Save all Tabs in Speed Dial Folder\u2019 doesn\u2019t work\n  on main context menu\n- DNA-84056 Submenus are not scrollable\n- DNA-84061 Expanded bookmark menu overlaps the whole toolbar\n- DNA-84277 Whole text should be visible\n- DNA-84412 Dragging tab to different place activates another tab\n- DNA-84492 Disable any notifications for \u201cdefault browser\u201d\n  from sweetlabs builds\n- DNA-84691 Crash when trying to open sidebar context menu\n\n- Update to version 67.0.3575.31\n- DNA-84077 Hide seek and timer controls in video pop-out\n  for YouTube live streams\n- DNA-84639 Promote O67 to stable\n- Complete Opera 67.0 changelog at: https://blogs.opera.com/desktop/changelog-for-67/\n\nUpdate to version 66.0.3515.103\n\n- DNA-83528 UnpackTest.CanUnpackTarXzFile test fails on OSX 10.15+\n- DNA-83568 Add test driver perftests\n- DNA-84335 [Linux] Widevine is not working due to changed \n  path of libwidevinecdm.so\n- DNA-84439 Opera extensions update requests are sent to chrome\n  instead of opera servers\n\nUpdate to version 66.0.3515.72\n\n- DNA-79691 Unable to play video on Netflix right after Opera \n  installation\n- DNA-82102 Wrong cursor and X color of the search fields on \n  Bookmark/History sidebar panels\n- DNA-82722 Google Translator blocks PDF viewer\n- DNA-83407 Crash at static void \n  `anonymous namespace\u201d::PureCall()\n- DNA-83530 Bad colors in Personal news when dark theme turned on\n- DNA-83531 Dragging speed dial root folders in bookmarks\n  sidebar makes duplicates\n- DNA-83542 Fix background tabs loading issues\n- DNA-83806 Crash at opera::RichHintDisplayHandlerViews::\n  OnWidgetDestroying(views::Widget*)\n- DNA-83882 Crash at base::Value::Clone()\n- DNA-84007 Accessibility elements visible on pages after\n  first navigation on Mac\n\nUpdate to version 66.0.3515.44\n\n- CHR-7734 Update chromium on desktop-stable-79-3515 \n  to 79.0.3945.130\n- DNA-82635 [Mac] Fix crash when opening power save popup twice\n- DNA-83587 Fix Crash at\n  opera::ThumbnailHelper::ThumbnailRequest::PopNextFrameToPaint()\n- DNA-83698 Unregister extensions keybindings when sidebar\n  is hidden\n- DNA-83757 Stop making thumbnail after history onboarding\n  will show\n\nUpdate to version 66.0.3515.36\n\n- CHR-7717 Update chromium on desktop-stable-79-3515 \n  to 79.0.3945.117\n- DNA-81359 Translate \u201cSpeed Dials\u201d folder in bookmarks panel\n- DNA-82627 Unify \u0026 streamline tooltip color processing \n  across Opera.\n- DNA-82800 Enable \n  kFeatureTurnOnFeaturesDownloadedByInstallerOnUpdates on \n  all streams\n- DNA-83190 Record SwitchToFullSite events on icon clicks.\n- DNA-83496 Check if history-panel is enabled before showing \n  onboarding.\n- DNA-83545 Fix a crash in adblocker rule update\n- DNA-83583 [Mac] Bookmark popup too bright in dark mode\n- DNA-83608 Set \u201cplat\u201d metadata in crash reports from Linux.\n\nUpdate to version 66.0.3515.27\n\n- DNA-82683 Bookmarks menu is not readable in dark mode \n  after hovering\n- DNA-83139 [macOS] screenshot is resized\n- DNA-83204 [Mac] Anchor onboarding widget to history \n  icon on sidebar\n- DNA-83205 [Mac] Popup looks bad with mode change\n- DNA-83351 Enable feature on stable/beta\n- DNA-83366 [Mac] Onboarding popup doesn\u2019t follow the browser \n  window\n- DNA-83402 Promote O66 to stable\n- Complete Opera 66.0 changelog at:\nhttps://blogs.opera.com/desktop/changelog-for-66/\n\nUpdate to version 65.0.3467.69\n\n- DNA-82647 Tab icons mixed after Tab closing\n- DNA-82919 Update wrapper to skip package types when \n  creating repo\n- DNA-82967 [Mac] Opera crashes on dragging the SSL icon \n  on the URL Bar\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2020-402",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0402-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2020:0402-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EDX6ZOT26AVRWFMJFVHNM7PDBNFW6ZAS/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2020:0402-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EDX6ZOT26AVRWFMJFVHNM7PDBNFW6ZAS/"
      }
    ],
    "title": "Security update for opera",
    "tracking": {
      "current_release_date": "2020-03-29T13:51:18Z",
      "generator": {
        "date": "2020-03-29T13:51:18Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2020:0402-1",
      "initial_release_date": "2020-03-29T13:51:18Z",
      "revision_history": [
        {
          "date": "2020-03-29T13:51:18Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opera-67.0.3575.97-lp151.2.12.1.x86_64",
                "product": {
                  "name": "opera-67.0.3575.97-lp151.2.12.1.x86_64",
                  "product_id": "opera-67.0.3575.97-lp151.2.12.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.1 NonFree",
                "product": {
                  "name": "openSUSE Leap 15.1 NonFree",
                  "product_id": "openSUSE Leap 15.1 NonFree",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opera-67.0.3575.97-lp151.2.12.1.x86_64 as component of openSUSE Leap 15.1 NonFree",
          "product_id": "openSUSE Leap 15.1 NonFree:opera-67.0.3575.97-lp151.2.12.1.x86_64"
        },
        "product_reference": "opera-67.0.3575.97-lp151.2.12.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1 NonFree"
      }
    ]
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.