Описание
Security update for opera
This update for opera fixes the following issues:
-
Update to version 73.0.3856.284
- CHR-8225 Update chromium on desktop-stable-87-3856 to 87.0.4280.88
- DNA-88454 Background of snap area above visible scrolled viewport is not captured
- DNA-89749 Implement client_capabilities support for Flow / Sync
- DNA-89810 Opera no longer autoselects full url/address bar when clicked
- DNA-89923 [Snap] Emojis look grayed out
- DNA-90060 Make gesture events work with search-in-tabs feature
- DNA-90168 Display SD suggestions titles
- DNA-90176 Player doesn’t show music service to choose on Welcome page
- DNA-90343 [Mac] Cmd+C doesn’t copy snapshot
- DNA-90538 Crash at extensions::CommandService:: GetExtensionActionCommand(std::__1::basic_string const&, extensions::ActionInfo::Type, extensions::CommandService:: QueryType, extensions::Command*, bool*)
-
The update to chromium 87.0.4280.88 fixes following issues:
CVE-2020-16037, CVE-2020-16038, CVE-2020-16039, CVE-2020-16040, CVE-2020-16041, CVE-2020-16042 -
Update to version 73.0.3856.257
- DNA-89918 #enable-force-dark flag doesn’t work anymore
- DNA-90061 Clicking on video’s progress bar breaks autopausing
- DNA-90079 [BigSur] Blank pages
- DNA-90154 Crash at extensions::CommandService:: GetExtensionActionCommand(std::__1::basic_string const&, extensions::ActionInfo::Type, extensions::CommandService:: QueryType, extensions::Command*, bool*)
-
Complete Opera 73.0 changelog at: https://blogs.opera.com/desktop/changelog-for-73/
Список пакетов
openSUSE Leap 15.1 NonFree
Ссылки
- E-Mail link for openSUSE-SU-2020:2359-1
- SUSE Security Ratings
- SUSE CVE CVE-2020-16037 page
- SUSE CVE CVE-2020-16038 page
- SUSE CVE CVE-2020-16039 page
- SUSE CVE CVE-2020-16040 page
- SUSE CVE CVE-2020-16041 page
- SUSE CVE CVE-2020-16042 page
Описание
Use after free in clipboard in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16037
- SUSE Bug 1179576
Описание
Use after free in media in Google Chrome on OS X prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16038
- SUSE Bug 1179576
Описание
Use after free in extensions in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16039
- SUSE Bug 1179576
Описание
Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16040
- SUSE Bug 1179576
Описание
Out of bounds read in networking in Google Chrome prior to 87.0.4280.88 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16041
- SUSE Bug 1179576
Описание
Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-16042
- SUSE Bug 1179576
- SUSE Bug 1180039