oss-sec mailing list archives
CVE request: Opera <9.27 Multiple issues
From: Robert Buchholz <rbu () gentoo org>
Date: Fri, 11 Apr 2008 03:11:32 +0200
These are more than a week old, but I haven't see CVEs popping up yet.
So here's a formal request ;-)
To quote the ChangeLog:
--------------
* Fixed an issue where newsfeed prompts could cause Opera to execute
arbitrary code, as reported by Michal Zalewski. See our advisory.
* Solved an issue where resized canvas patterns could cause Opera to
execute arbitrary code, as reported by Michal Zalewski. See our
advisory.
* Improved keyboard handling of password inputs, as reported by
Trystan S.
--------------
I have no idea what the third vulnerability actually means.
References:
http://www.opera.com/docs/changelogs/windows/927/
http://www.opera.com/support/search/view/881/ (1)
http://www.opera.com/support/search/view/882/ (2)
http://secunia.com/advisories/29662/
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- CVE request: Opera <9.27 Multiple issues Robert Buchholz (Apr 10)
- Re: CVE request: Opera <9.27 Multiple issues Steven M. Christey (Apr 12)
- Re: CVE request: Opera <9.27 Multiple issues Robert Buchholz (Apr 12)
- Re: CVE request: Opera <9.27 Multiple issues Steven M. Christey (Apr 12)