Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 454654 - <www-client/opera-12.13_p1734 - multiple vulnerabilities (CVE-2013-{1618,1637,1638,1639})
Summary: <www-client/opera-12.13_p1734 - multiple vulnerabilities (CVE-2013-{1618,1637...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://www.opera.com/docs/changelogs/...
Whiteboard: B2 [glsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2013-01-30 14:33 UTC by Jeroen Roovers (RETIRED)
Modified: 2014-06-19 11:49 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2013-01-30 14:33:01 UTC
= Security =
* Fixed an issue where DOM events manipulation might be used to execute arbitrary
  code, as reported by Arthur Gerkis; see our advisory[1]
* Fixed an issue where use of SVG clipPaths could allow execution of arbitrary
  code, as reported by anonymous via the iSIGHT Partners GVP Program; see our
  advisory[2]
* Fixed a low severity security issue; details will be disclosed at a later date
* Fixed an issue where CORS requests could omit the preflight request, as
  reported by webpentest; see our advisory[3]

[1] http://www.opera.com/support/kb/view/1042/
[2] http://www.opera.com/support/kb/view/1043/
[3] http://www.opera.com/support/kb/view/1045/

Arch teams, please test and mark stable:
=www-client/opera-12.13_p1734
Stable KEYWORDS : amd64 x86
Comment 1 Agostino Sarubbo gentoo-dev 2013-01-30 16:30:31 UTC
# Jeroen Roovers <jer@gentoo.org> (27 Mar 2012)
# Opera Next and Opera snapshots are unsupported and eternally unstable.
# <http://my.opera.com/desktopteam/blog>
www-client/opera-next
=www-client/opera-12.13*


Please remove the entry first.
Comment 2 Jeroen Roovers (RETIRED) gentoo-dev 2013-01-30 18:26:40 UTC
(In reply to comment #1)
> Please remove the entry first.

Thanks. Done.
Comment 3 Agostino Sarubbo gentoo-dev 2013-01-30 22:43:39 UTC
amd64 stable
Comment 4 Agostino Sarubbo gentoo-dev 2013-01-30 22:44:16 UTC
x86 stable
Comment 5 Sean Amoss (RETIRED) gentoo-dev Security 2013-02-25 23:19:01 UTC
Adding to existing GLSA draft.
Comment 6 GLSAMaker/CVETool Bot gentoo-dev 2013-02-25 23:19:35 UTC
CVE-2013-1639 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1639):
  Opera before 12.13 does not send CORS preflight requests in all required
  cases, which allows remote attackers to bypass a CSRF protection mechanism
  via a crafted web site that triggers a CORS request.

CVE-2013-1638 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1638):
  Opera before 12.13 allows remote attackers to execute arbitrary code via
  crafted clipPaths in an SVG document.

CVE-2013-1637 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1637):
  Opera before 12.13 allows remote attackers to execute arbitrary code via
  vectors involving DOM events.

CVE-2013-1618 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1618):
  The TLS implementation in Opera before 12.13 does not properly consider
  timing side-channel attacks on a MAC check operation during the processing
  of malformed CBC padding, which allows remote attackers to conduct
  distinguishing attacks and plaintext-recovery attacks via statistical
  analysis of timing data for crafted packets, a related issue to
  CVE-2013-0169.
Comment 7 GLSAMaker/CVETool Bot gentoo-dev 2014-06-15 00:48:11 UTC
This issue was resolved and addressed in
 GLSA 201406-14 at http://security.gentoo.org/glsa/glsa-201406-14.xml
by GLSA coordinator Chris Reffett (creffett).
Comment 8 GLSAMaker/CVETool Bot gentoo-dev 2014-06-19 11:49:54 UTC
This issue was resolved and addressed in
 GLSA 201406-14 at http://security.gentoo.org/glsa/glsa-201406-14.xml
by GLSA coordinator Chris Reffett (creffett).