SUSE 4999 Published by

An opera security update has been released for openSUSE Leap 15.4.



openSUSE-SU-2023:0066-1: important: Security update for opera


openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID: openSUSE-SU-2023:0066-1
Rating: important
References:
Cross-References: CVE-2023-0927 CVE-2023-0928 CVE-2023-0929
CVE-2023-0930 CVE-2023-0931 CVE-2023-0932
CVE-2023-0933 CVE-2023-0941
CVSS scores:
CVE-2023-0927 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0928 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0929 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0930 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0931 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0932 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0933 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-0941 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:
openSUSE Leap 15.4:NonFree
______________________________________________________________________________

An update that fixes 8 vulnerabilities is now available.

Description:

This update for opera fixes the following issues:

Update to 96.0.4693.31

* CHR-9206 Update Chromium on desktop-stable-110-4693 to 110.0.5481.178
* DNA-104492 [Stable A/B Test] React Start Page for Austria 50%
* DNA-104660 Browser crash when calling window.opr.authPrivate API in a
private mode
* DNA-105000 Crash at non-virtual thunk to
SadTabView::OnBoundsChanged(gfx::Rect const&)
* DNA-105138 Hang-up button is red in video popout
* DNA-105211 Johnny5 – Prepare extension to be usable in Desktop
* DNA-105377 Add API for extension to be able to open sidebar panel
* DNA-105378 Add "AI Shorten" functionality to search/copy tooltip
* DNA-105410 Change Popup functionality depending on number
of words selected
* DNA-105429 Fix privileges for Shodan api
* DNA-105434 Change popup depending on number of words
* DNA-105442 Fix Update & Recovery page styling
* DNA-105455 [Search box] Search box does not resize dynamically
* DNA-105606 Enabling news by default on SP test- 2

The update to chromium 110.0.5481.178 fixes following issues:
CVE-2023-0927, CVE-2023-0928, CVE-2023-0929, CVE-2023-0930, CVE-2023-0931,
CVE-2023-0932, CVE-2023-0933, CVE-2023-0941

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.4:NonFree:

zypper in -t patch openSUSE-2023-66=1


Package List:

- openSUSE Leap 15.4:NonFree (x86_64):

opera-96.0.4693.31-lp154.2.44.1

References:

  https://www.suse.com/security/cve/CVE-2023-0927.html
  https://www.suse.com/security/cve/CVE-2023-0928.html
  https://www.suse.com/security/cve/CVE-2023-0929.html
  https://www.suse.com/security/cve/CVE-2023-0930.html
  https://www.suse.com/security/cve/CVE-2023-0931.html
  https://www.suse.com/security/cve/CVE-2023-0932.html
  https://www.suse.com/security/cve/CVE-2023-0933.html
  https://www.suse.com/security/cve/CVE-2023-0941.html