openSUSE Security Update : Opera (openSUSE-SU-2013:0289-2)

Medium Nessus Plugin ID 74888


The remote openSUSE host is missing a security update.


Opera was updated to 12.14 version fixing stability issues. This update also consists updates for Opera 12.13 which is a recommended upgrade offering security and stability enhancements.

-fixed an issue where Opera gets internal communication errors on Facebook

-fixed an issue where no webpages load on startup, if Opera is disconnected from the Internet

-fixed an issue where images will not load after back navigation, when a site uses the HTML5 history API (

-improved protection against hijacking of the default search, including a one-time reset

-fixed an issue where DOM events manipulation might be used to execute arbitrary code;

-fixed an issue where use of SVG clipPaths could allow execution of arbitrary code;

-CVE-2013-1618: Fixed a TLS information leak.

-fixed an issue where CORS requests could omit the preflight request;


Update the affected Opera packages.

See Also

Plugin Details

Severity: Medium

ID: 74888

File Name: openSUSE-2013-113.nasl

Version: $Revision: 1.2 $

Type: local

Agent: unix

Published: 2014/06/13

Modified: 2015/07/10

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4

Temporal Score: 3.8

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N

Temporal Vector: CVSS2#E:F/RL:ND/RC:ND

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:opera, p-cpe:/a:novell:opensuse:opera-gtk, p-cpe:/a:novell:opensuse:opera-kde4, cpe:/o:novell:opensuse:12.1, cpe:/o:novell:opensuse:12.2

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/02/08

Reference Information

CVE: CVE-2013-1618

OSVDB: 89848