Security Watch

Keeping Track of patches and hacks in the IT security world.

Opera Sings the Patching Blues

Opera sings security patching blues

Alternative browser maker Opera Software has released a "highly critical" update to fix a batch of potentially serious security vulnerabilities.

According to a Secunia advisory, the bugs can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a user's system.

The skinny, from Opera's documentation:

"An error can be exploited via certain plugins to conduct cross-domain scripting attacks.An error within the processing of TLS certificates can be exploited to execute arbitrary code.An error within Rich text editing when using designMode can be exploited to conduct cross-domain scripting attacks.An error within the processing of bitmaps can be exploited to disclose the contents of random memory areas."

Opera users are strongly advised to update to Version 9.25.