59503 – net-www/opera-7.54 Fixes several security issues

Bug 59503 - net-www/opera-7.54 Fixes several security issues

Summary: net-www/opera-7.54 Fixes several security issues

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://www.opera.com/linux/changelogs...
Whiteboard:	A4 [glsa] jaervosz
Keywords:

Duplicates (1):	58511 (view as bug list)
Depends on:
Blocks:

Reported:	2004-08-05 04:27 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified:	2011-10-30 22:39 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2004-08-05 04:27:52 UTC

From ChangeLog:

Security:

-Denied write-access to properties on objects from scripts that fail a standard origin check, in order to block potential access by attackers to user's computer. Fixes critical vulnerability reported in GreyMagic Security Advisory GM#008-OP.

-Fixed security issue regarding spoofing of the addressfield by loading other page contents while keeping the URL, reported in Secunia Advisory SA12162.

-Blocked access to file:/ URLs from documents that are not themselves loaded from file:/ URLs.

Comment 1 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2004-08-05 04:37:44 UTC

*** Bug 58511 has been marked as a duplicate of this bug. ***

Comment 2 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2004-08-05 04:38:09 UTC

Heinrich please bump

Comment 3 Heinrich Wendel (RETIRED) gentoo-dev

2004-08-05 06:40:26 UTC

bumped and marked stable on x86

Comment 4 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2004-08-05 07:09:07 UTC

Thx Heinrich for the quick bump.

amd64, sparc please mark stable

ppc please mark ~

Comment 5 Tom Martin (RETIRED) gentoo-dev

2004-08-05 09:31:19 UTC

Marked stable on amd64.

Comment 6 Gustavo Zacarias (RETIRED) gentoo-dev

2004-08-05 10:38:52 UTC

Stable on sparc.

Comment 7 Thierry Carrez (RETIRED) gentoo-dev

2004-08-05 11:11:18 UTC

Keywords all set, ready for a GLSA

Comment 8 Thierry Carrez (RETIRED) gentoo-dev

2004-08-05 13:45:34 UTC

GLSA 200408-05