GLSA-200701-08 : Opera: Two remote code execution vulnerabilities
High Nessus Plugin ID 24206
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200701-08 (Opera: Two remote code execution vulnerabilities)
Christoph Deal discovered that JPEG files with a specially crafted DHT marker can be exploited to cause a heap overflow. Furthermore, an anonymous person discovered that Opera does not correctly handle objects passed to the 'createSVGTransformFromMatrix()' function.
SolutionAll Opera users should update to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=www-client/opera-9.10'