SUSE 5145 Published by

An opera security update has been released for openSUSE Leap 15.2.



openSUSE-SU-2021:0712-1: important: Security update for opera


openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID: openSUSE-SU-2021:0712-1
Rating: important
References:
Cross-References: CVE-2021-21206 CVE-2021-21220 CVE-2021-21222
CVE-2021-21223 CVE-2021-21224 CVE-2021-21225
CVE-2021-21226
CVSS scores:
CVE-2021-21220 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2021-21222 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CVE-2021-21223 (NVD) : 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CVE-2021-21224 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2021-21225 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2021-21226 (NVD) : 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products:
openSUSE Leap 15.2:NonFree
______________________________________________________________________________

An update that fixes 7 vulnerabilities is now available.

Description:

This update for opera fixes the following issues:

Update to version 76.0.4017.94

- released on the stable branch

Update to version 76.0.4017.88

- CHR-8404 Update chromium on desktop-stable-90-4017 to 90.0.4430.85
- DNA-92219 Add bookmark API supports to the front-end
- DNA-92409 [MAC] ???Present now??? options windows appear behind
detached window
- DNA-92615 Capture tab from the tab context menu
- DNA-92616 Capture tab from Snapshot
- DNA-92617 Capture tab from image context menu
- DNA-92652 Opera 76 translations
- DNA-92680 Make image selector on any page work like bookmarks popup WP2
- DNA-92707 Crash at void base::ObserverList::AddObserver(class
content::PrerenderHost::Observer*)
- DNA-92710 Autoupdate on macOS 11.3 not working
- DNA-92711 Make image selector on any page work like bookmarks popup WP3
- DNA-92730 Make image selector on any page work like bookmarks popup WP4
- DNA-92761 Make image selector on any page work like bookmarks popup WP5
- DNA-92776 Make image selector on any page work like bookmarks popup WP6
- DNA-92862 Make ???View pinboards??? button work
- DNA-92906 Provide in-house translations for Cashback strings to Spanish
- DNA-92908 API collides with oneclick installer
- The update to chromium 90.0.4430.85 fixes following issues:
- CVE-2021-21222, CVE-2021-21223, CVE-2021-21224, CVE-2021-21225,
CVE-2021-21226

- Complete Opera 76.0 changelog at:
  https://blogs.opera.com/desktop/changelog-for-76/

Update to version 75.0.3969.218

- CHR-8393 Update chromium on desktop-stable-89-3969 to 89.0.4389.128
- DNA-92113 Windows debug fails to compile
opera_components/ipfs/ipfs/ipfs_url_loader_throttle.obj
- DNA-92198 [Arm] Update signing scripts
- DNA-92200 [Arm] Create universal packages from two buildsets
- DNA-92338 [Search tabs] The preview isn???t updated when the tab from
another window is closed
- DNA-92410 [Download popup] Selected item still looks bad in dark mode
- DNA-92441 Compilation error
- DNA-92514 Allow to generate universal DMG package from existing
universal .tar.xz
- DNA-92608 Opera 75 crash during rapid workspace switching
- DNA-92627 Crash at automation::Error::code()
- DNA-92630 Crash at
opera::PremiumExtensionPersistentPrefStorageImpl::IsPremiumExtensionFeature
Enabled()
- DNA-92648 Amazon icon disappears from Sidebar Extensions section after
pressing Hide Amazon button
- DNA-92681 Add missing string in Japanese
- DNA-92684 Fix issues with signing multiple bsids
- DNA-92706 Update repack generation from universal packages
- DNA-92725 Enable IPFS for all channels

- The update to chromium 89.0.4389.128 fixes following issues:
CVE-2021-21206, CVE-2021-21220

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.2:NonFree:

zypper in -t patch openSUSE-2021-712=1


Package List:

- openSUSE Leap 15.2:NonFree (x86_64):

opera-76.0.4017.94-lp152.2.43.1

References:

  https://www.suse.com/security/cve/CVE-2021-21206.html
  https://www.suse.com/security/cve/CVE-2021-21220.html
  https://www.suse.com/security/cve/CVE-2021-21222.html
  https://www.suse.com/security/cve/CVE-2021-21223.html
  https://www.suse.com/security/cve/CVE-2021-21224.html
  https://www.suse.com/security/cve/CVE-2021-21225.html
  https://www.suse.com/security/cve/CVE-2021-21226.html