In association with heise online

31 January 2013, 12:38

Opera 12.13 update closes security vulnerabilities

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Opera logo

Opera has released version 12.13 of its desktop browser, which includes stability improvements and fixes several security holes, including two arbitrary code execution vulnerabilities. Due to the nature of the vulnerabilities, the Opera developers are advising all users to update to the new version as soon as possible.

One arbitrary code execution vulnerability allows the injection of code after certain DOM event manipulations set the browser on a course to crash. A bug in the browser's use of SVG clipPaths could also lead Opera to execute arbitrary code by including specially prepared clipPaths in an SVG document. Other bug fixes in the new version correct problems with the browser's startup, image loading issues when navigating web sites, and communication errors on Facebook.

In the comments to Opera's announcement, some users have reported crashes with the browser's update functionality when trying to install the latest release. According to the users, these problems could be related to certain plugins or to the 64-bit version of the browser.

(fab)

Print Version | Send by email | Permalink: http://h-online.com/-1794826
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit