openSUSE Security Update : opera (openSUSE-2020-1320)

high Nessus Plugin ID 141904

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for opera fixes the following issues :

Update to version 70.0.3728.133

- CHR-8053 Update chromium on desktop-stable-84-3728 to 84.0.4147.125

- DNA-87289 Crash at views::NativeWidgetMacNSWindowHost::
OnNativeViewHostDetach(views::View const*)

- DNA-87831 [Linux] Sidebar panel cannot be pinned

- DNA-88057 [Win] Black rectangle flickers at the bottom of the page on startup

- DNA-88157 Sidebar Messenger too low in FullScreen mode

- DNA-88238 [macOS 10.15] Toolbar buttons not visible on inactive tab

- The update to chromium 84.0.4147.125 fixes following issues :

- CVE-2020-6542, CVE-2020-6543, CVE-2020-6544, CVE-2020-6545, CVE-2020-6546, CVE-2020-6547, CVE-2020-6548, CVE-2020-6549, CVE-2020-6550, CVE-2020-6551, CVE-2020-6552, CVE-2020-6553, CVE-2020-6554, CVE-2020-6555

- Update to version 70.0.3728.119

- DNA-88215 Introduce easy-setup-hint-ref feature flag

- Update to version 70.0.3728.106

- DNA-88014 [Mac] Toolbar in fullscreen disabled after using fullscreen from videoplayer

- Update to version 70.0.3728.95

- CHR-8026 Update chromium on desktop-stable-84-3728 to 84.0.4147.105

- DNA-86340 Wrong link to the help page

- DNA-87394 [Big Sur] Some popovers have incorrectly themed arrow

- DNA-87647 [Win] The [+] button flickers after creating a new tab

- DNA-87794 Crash at aura::Window::SetVisible(bool)

- DNA-87796 Search in tabs should closed on second click

- DNA-87863 Parameter placing issue in all languages

- The update to chromium 84.0.4147.105 fixes following issues :

- CVE-2020-6537, CVE-2020-6538, CVE-2020-6532, CVE-2020-6539, CVE-2020-6540, CVE-2020-6541

Solution

Update the affected opera package.

Plugin Details

Severity: High

ID: 141904

File Name: openSUSE-2020-1320.nasl

Version: 1.2

Type: local

Agent: unix

Published: 10/26/2020

Updated: 10/28/2020

Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent

Risk Information

VPR

Risk Factor: High

Score: 8.1

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: E:POC/RL:OF/RC:C

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:opera, cpe:/o:novell:opensuse:15.1

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/2/2020

Vulnerability Publication Date: 9/21/2020

Reference Information

CVE: CVE-2020-6532, CVE-2020-6537, CVE-2020-6538, CVE-2020-6539, CVE-2020-6540, CVE-2020-6541, CVE-2020-6542, CVE-2020-6543, CVE-2020-6544, CVE-2020-6545, CVE-2020-6546, CVE-2020-6547, CVE-2020-6548, CVE-2020-6549, CVE-2020-6550, CVE-2020-6551, CVE-2020-6552, CVE-2020-6553, CVE-2020-6554, CVE-2020-6555