* Fixed an issue where specially crafted addresses could execute arbitrary code, as reported by Chris of Matasano Security; see our advisory
* Java applets can no longer be used to read sensitive information, as reported by Nate McFeters; see our advisory
www-client/opera-9.60 fixes these and an ebuild is in the tree.
Arches, please test and mark stable:
Target keywords : "amd64 ppc sparc x86"
no sparc, as usual.
GLSA together with bug 235298.
CVE-2008-4694 code execution using redirects to crafted addresses
CVE-2008-4695 Java applets cache file read
GLSA 200811-01, thanks everyone and sorry about the delay.