openSUSE 10 Security Update : opera (opera-5354)
Medium Nessus Plugin ID 33224
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis patch brings Opera to security update level 9.50
Following security problems were fixed: CVE-2008-2714: Opera before 9.26 allows remote attackers to misrepresent web page addresses using 'certain characters' that 'cause the page address text to be misplaced.'
CVE-2008-2715: Unspecified vulnerability in Opera before 9.5 allows remote attackers to read cross-domain images via HTML CANVAS elements that use the images as patterns.
CVE-2008-2716: Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.
It also contains lots of new features and other bugfixes, see the Changelog at: http://www.opera.com/docs/changelogs/linux/950/
SolutionUpdate the affected opera package.