|| ||Mageia Updates <email@example.com> |
|| ||firstname.lastname@example.org |
|| ||[updates-announce] MGASA-2012-0197: opera-12.01-1.mga (1,
|| ||Fri, 3 Aug 2012 23:04:48 +0200|
|| ||Article, Thread
Date: August 3rd, 2012
Affected releases: 1, 2
Opera 12.01 fixes several security and stability issues found
in previous versions.
Re-fixed an issue where certain URL constructs could allow arbitrary
code execution, as reported by Andrey Stroganov (Critical severity).
Fixed an issue where certain characters in HTML could incorrectly be
ignored, which could facilitate XSS attacks (High severity).
Fixed another issue where small windows could be used to trick users
into executing downloads as reported by Jordi Chancel (High severity).
Fixed an issue where an element's HTML content could be incorrectly
returned without escaping, bypassing some HTML sanitizers
An undisclosed low severity issue has also been fixed.
For a complete list of changes including the non-security fixes,
to post comments)