Our old friend Tavis Ormandy discovered the following: "Specially crafted JPEG images can cause Opera to corrupt memory and crash. Successful exploitation can lead to execution of arbitrary code." Opera rates this as Extremely Severe jer, please provide an ebuild
CC'ing jer ;)
opera-9.64.ebuild is in the tree.
Arches, please test and mark stable: =www-client/opera-10.00_pre4166 Target keywords : "amd64 ppc x86"
(In reply to comment #3) > Arches, please test and mark stable: > =www-client/opera-10.00_pre4166 Obviously wrong, the target is =www-client/opera-9.64
amd64 stable
ppc stable
x86 stable, all arches done, please proceed to GLSA.
Request filed
GLSA 200903-30, thanks everyone.
CVE-2009-0914 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0914): Opera before 9.64 allows remote attackers to execute arbitrary code via a crafted JPEG image that triggers memory corruption. CVE-2009-0915 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0915): Opera before 9.64 allows remote attackers to conduct cross-domain scripting attacks via unspecified vectors related to plug-ins. CVE-2009-0916 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0916): Unspecified vulnerability in Opera before 9.64 has unknown impact and attack vectors, related to a "moderately severe issue."
I have added the CVE-2009-0914 reference to GLSA 200903-30. No need to send it again, and no need to process the other assigned CVEs.