* Fixed an issue that allowed cross-domain checks to be bypassed, allowing limited data theft using CSS, as reported by Isaac Dawson * Fixed an issue where manipulating the window could be used to spoof the page address * Fixed an issue with reloads and redirects that could allow spoofing and cross-site scripting * Fixed an issue that allowed private video streams to be intercepted, as reported by Nirankush Panchbhai of Microsoft Vulnerability Research * Fixed an issue that caused JavaScript to run in the wrong security context after manual interaction
Arch teams, please test and mark stable: =www-client/opera-10.63 Target KEYWORDS="amd64 ppc x86"
It looks good over here on x86.
x86 stable, thanks Andreas.
amd64 done
Stable for PPC. 10.61 removed.
Thanks, folks. GLSA Vote: no.
GLSA Vote: no -> Closing. Feel free to reopen if you disagree.