Opera 9.63 Security Update, Switching Focus from Opera 10 Alpha 1
Now that Opera 10 Alpha 1 is already out there, and it is impressive if you consider the Acid3 tests alone, the development team at Opera Software has issued Opera 9.63, an update that is meant to address a few critical security holes in the browser. If you are an Opera fan and you are the kind of user that is security oriented, then you must know that the recent Opera 9.61 and Opera 9.62 updates were also meant to plug some security holes.
The problems within Opera 9.61 were fixed by Opera 9.62, but according to security researcher Aviv Raff, some bugs slipped by – queue in Opera 9.63 and its Opera Presto 2.1.1 engine. A total of 7 issues have been solved with the recent Opera 9.63 update:
- The extremely severe vulnerability that caused a buffer overflow when certain text-area contents were manipulated. This lead to arbitrary code execution on the targeted machine.
- The extremely severe vulnerability that caused an unexpected DOM change when handling certain HTML constructs. This lead to the browser crashing.
- The highly severe vulnerability that caused a buffer overflow when handling very long URLs. This lead to arbitrary code execution on the targeted machine.
- The highly severe vulnerability that allowed an attacker to subscribe the user to malicious feeds and also view the feeds the users is subscribed to. This problem occurred because Opera until now did not correctly block scripted URLs when previewing news feeds.
- The highly severe vulnerability that caused the built-in XSLT templates to handle escaped content in an incorrect manner and consequently treat it as markup. This could allow an attacker to inject scripted markup which would be executed in the web page’s security context.
- Random data no longer can be revealed.
- Java and plug-in content can no longer be executed by means of <img> tags in embedded SVG images.
The bottom line is this: if you want to stay protected (as you may have noticed most of the vulnerabilities are rated highly critical and extremely critical) it is vital that you upgrade your Opera browser.
Tags: Opera, Opera 9.63
The problems within Opera 9.61 were fixed by Opera 9.62, but according to security researcher Aviv Raff, some bugs slipped by – queue in Opera 9.63 and its Opera Presto 2.1.1 engine. A total of 7 issues have been solved with the recent Opera 9.63 update:
Advertising
- The extremely severe vulnerability that caused a buffer overflow when certain text-area contents were manipulated. This lead to arbitrary code execution on the targeted machine.
- The extremely severe vulnerability that caused an unexpected DOM change when handling certain HTML constructs. This lead to the browser crashing.
- The highly severe vulnerability that caused a buffer overflow when handling very long URLs. This lead to arbitrary code execution on the targeted machine.
- The highly severe vulnerability that allowed an attacker to subscribe the user to malicious feeds and also view the feeds the users is subscribed to. This problem occurred because Opera until now did not correctly block scripted URLs when previewing news feeds.
- The highly severe vulnerability that caused the built-in XSLT templates to handle escaped content in an incorrect manner and consequently treat it as markup. This could allow an attacker to inject scripted markup which would be executed in the web page’s security context.
- Random data no longer can be revealed.
- Java and plug-in content can no longer be executed by means of <img> tags in embedded SVG images.
The bottom line is this: if you want to stay protected (as you may have noticed most of the vulnerabilities are rated highly critical and extremely critical) it is vital that you upgrade your Opera browser.
Tags: Opera, Opera 9.63
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 10 Feb 2012
With the release of Wolfram|Alpha Pro, the team behind the popular computational knowledge engine took a very big step forward
By George Norman on 10 Feb 2012
Microsoft has just announced that this February, as part of the Patch Tuesday program, it will roll out a grand total of 9 security bulletins to all customers all over the world.Related News
By George Norman on 06 Dec 2011
On Tuesday, the 6th of December, Norwegian developer Opera Software announced that it has a “gift that changes everything” to offer to the world. That gift is Opera 11.60 which carries the codename “Tunny”
By George Norman on 11 Nov 2011
On Thursday, the 10th of November, Norwegian developer Opera Software announced that the Beta version of Opera 11.60 has been released to the public. This version of the Opera web browser carries the codename “Tunny”, which is another name for tuna, a fish known for 
By George Norman on 07 Nov 2011
The current stable version of the Linux Mint operating system (OS) is Linux Mint 11 which carries the codename Katya. That is a word of Russian origin that is associated with the meaning “pure.” Before that there
By George Norman on 06 Dec 2011
Ever wondered why you should leave your default browser behind and move on to something else? If you have been thinking about dropping the browser that comes by default on your Windows-powered computer, then you will be glad to find out thatAdvertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Opera 9.63 Security Update, Switching Focus from Opera 10 Alpha 1
HTML Linking Code
HTML Linking Code