SUSE 5185 Published by

A opera security update has been released for openSUSE Leap 15.4.



openSUSE-SU-2022:10239-1: important: Security update for opera


openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID: openSUSE-SU-2022:10239-1
Rating: important
References:
Cross-References: CVE-2022-3885 CVE-2022-3886 CVE-2022-3887
CVE-2022-3888 CVE-2022-3889
CVSS scores:
CVE-2022-3885 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2022-3886 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2022-3887 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2022-3888 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2022-3889 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:
openSUSE Leap 15.4:NonFree
______________________________________________________________________________

An update that fixes 5 vulnerabilities is now available.

Description:

This update for opera fixes the following issues:

Update to 93.0.4585.37
- DNA-102885 Turn on #sidebar-autohide on all streams
- DNA-103020 Turn on #start-page-redesign on developer
- DNA-103042 Fix import from Firefox
- DNA-103222 [Speed Dial Suggestions] All opera.com subpages suggestions
lead to the opera.com homepage
- DNA-103368 TikTok videos starting to play automaticly
- DNA-103535 Startpage preview is not visible
- DNA-103665 Reduce Tik Tok pane width

Changes in 93.0.4585.21
- CHR-9067 Update chromium on desktop-stable-107-4585 to 107.0.5304.110
- DNA-102365 Turn off opera://dify-cards page
- DNA-102689 [GX] Create GX widgets section in Easy Setup
- DNA-102768 [Easy setup] Sidebar options not animated
- DNA-102872 No animation for opening sidebar while sidebar is closing
- DNA-102929 [Weather][Private window] Weather widget appears in private
window
- DNA-103032 Messenger sidebar icon doesn’t look great
- DNA-103046 Opera crash with flag –with-feature:sidebar-autohide=off
- DNA-103107 Automatic video popout for popular sports sites – World
Cup
- DNA-103310 hideOperaObject() in browser.js stopped working
on public builds
- DNA-103320 Crash at chrome::FindBrowserByType(absl::optional)
- DNA-103321 Tab preview causes freeze when dragging tabs
- DNA-103375 [Workspaces] Crash at absl::raw_log_internal::
RawLog(absl::LogSeverity, char const*, int, char const*, …)
- DNA-103395 Remove unused resources
- DNA-103396 Internal translations
- The update to chromium 107.0.5304.110 fixes following issues:
CVE-2022-3885, CVE-2022-3886, CVE-2022-3887, CVE-2022-3888,
CVE-2022-3889, CVE-2022-3889

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.4:NonFree:

zypper in -t patch openSUSE-2022-10239=1


Package List:

- openSUSE Leap 15.4:NonFree (x86_64):

opera-93.0.4585.37-lp154.2.32.1

References:

  https://www.suse.com/security/cve/CVE-2022-3885.html
  https://www.suse.com/security/cve/CVE-2022-3886.html
  https://www.suse.com/security/cve/CVE-2022-3887.html
  https://www.suse.com/security/cve/CVE-2022-3888.html
  https://www.suse.com/security/cve/CVE-2022-3889.html