An opera security update has been released for openSUSE Leap 15.1 and 15.2.

opensuse-security-announce: openSUSE-SU-2020:1952-1: important: Security update for opera

openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID: openSUSE-SU-2020:1952-1
Rating: important
References:
Cross-References: CVE-2020-15999 CVE-2020-16000 CVE-2020-16001
CVE-2020-16002 CVE-2020-16003 CVE-2020-16004
CVE-2020-16005 CVE-2020-16006 CVE-2020-16007
CVE-2020-16008 CVE-2020-16009 CVE-2020-16011

Affected Products:
openSUSE Leap 15.2:NonFree
openSUSE Leap 15.1:NonFree
______________________________________________________________________________

An update that fixes 12 vulnerabilities is now available.

Description:

This update for opera fixes the following issues:

Opera was updated to version 72.0.3815.320

- CHR-8177 Update chromium on desktop-stable-86-3815 to 86.0.4240.183
- DNA-89748 ???Manage Extensions??? dialog is displayed with preloaded
extensions
- DNA-89766 Address bar does not respond to actions

- The update to chromium 86.0.4240.183 fixes following issues:
CVE-2020-16004, CVE-2020-16005, CVE-2020-16006, CVE-2020-16007,
CVE-2020-16008, CVE-2020-16009, CVE-2020-16011

- Update to version 72.0.3815.200

- DNA-87150 Speed Dial tile can???t be dragged to proper place
- DNA-89632 Improve hovering over icons
- DNA-89647 [Light mode] Wrong URL color in ???Add Site??? section
- DNA-89791 Typo in Spanish

- The update to chromium 86.0.4240.111 fixes following issues:
CVE-2020-16000, CVE-2020-16001, CVE-2020-16002, CVE-2020-15999,
CVE-2020-16003

- Complete Opera 72.0 changelog at:
https://blogs.opera.com/desktop/changelog-for-72/

- Update to version 71.0.3770.271

- DNA-88353 Crash at opera::TabCyclerView::HighlightContents
(content::WebContents*, bool)
- DNA-89177 Device update request should only be called when FCM token
has changed
- DNA-89186 Handle device expired case in all server calls
- DNA-89202 Pages are rendered in dark mode when force dark mode prefs
were synced from Opera GX
- DNA-89247 [Mac] Fullscreen video broken if sidebar is hidden
- DNA-89298 Some elements of VPN popup are misaligned to design
- DNA-89305 Crash after closing Downloads pop-up


Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.2:NonFree:

zypper in -t patch openSUSE-2020-1952=1

- openSUSE Leap 15.1:NonFree:

zypper in -t patch openSUSE-2020-1952=1



Package List:

- openSUSE Leap 15.2:NonFree (x86_64):

opera-72.0.3815.320-lp152.2.21.1

- openSUSE Leap 15.1:NonFree (x86_64):

opera-72.0.3815.320-lp151.2.33.1


References:

https://www.suse.com/security/cve/CVE-2020-15999.html
https://www.suse.com/security/cve/CVE-2020-16000.html
https://www.suse.com/security/cve/CVE-2020-16001.html
https://www.suse.com/security/cve/CVE-2020-16002.html
https://www.suse.com/security/cve/CVE-2020-16003.html
https://www.suse.com/security/cve/CVE-2020-16004.html
https://www.suse.com/security/cve/CVE-2020-16005.html
https://www.suse.com/security/cve/CVE-2020-16006.html
https://www.suse.com/security/cve/CVE-2020-16007.html
https://www.suse.com/security/cve/CVE-2020-16008.html
https://www.suse.com/security/cve/CVE-2020-16009.html
https://www.suse.com/security/cve/CVE-2020-16011.html