openSUSE Security Update: Security update for opera

Announcement ID:    openSUSE-SU-2021:0138-1
Rating:             moderate
Cross-References:   CVE-2020-15995 CVE-2020-16043 CVE-2021-21106
                    CVE-2021-21107 CVE-2021-21108 CVE-2021-21109
                    CVE-2021-21110 CVE-2021-21111 CVE-2021-21112
                    CVE-2021-21113 CVE-2021-21114 CVE-2021-21115
Affected Products:
                    openSUSE Leap 15.1:NonFree

   An update that fixes 13 vulnerabilities is now available.


   This update for opera fixes the following issues:

   - Update to version 73.0.3856.344
     - CHR-8265 Update chromium on desktop-stable-87-3856 to 87.0.4280.141
     - DNA-90625 [Mac] Crash at opera::TabView::
       GetPaintData(opera::TabState) const
     - DNA-90735 Crash at opera::BrowserSidebarModel::GetItemVisible
       (opera::BrowserSidebarItem const*) const
     - DNA-90780 Crash at extensions::CommandService::GetExtension
       ActionCommand(std::__1::basic_string const&, extensions::
       ActionInfo::Type, extensions::CommandService::QueryType,
       extensions::Command*, bool*)
     - DNA-90821 Crash at opera::BrowserSidebarController::
       Action(opera::BrowserSidebarItem const*,
   - The update to chromium 87.0.4280.141 fixes following issues:
     CVE-2021-21106, CVE-2021-21107, CVE-2021-21108, CVE-2021-21109,
     CVE-2021-21110, CVE-2021-21111, CVE-2021-21112, CVE-2021-21113,
     CVE-2020-16043, CVE-2021-21114, CVE-2020-15995, CVE-2021-21115,

   - Update to version 73.0.3856.329
     - DNA-89156 Crash at content::RenderViewHostImpl::OnFocus()
     - DNA-89731 [Mac] Bookmarks bar overlaps Babe section when hovering the
     - DNA-90189 Music service portal logotypes are blurred on Win
     - DNA-90336 add session data schema
     - DNA-90399 Address bar dropdown suggestions overlap each other
     - DNA-90520 Crash at absl::raw_logging_internal::RawLog(absl::
       LogSeverity, char const*, int, char const*, ???)
     - DNA-90538 Crash at extensions::CommandService::
       GetExtensionActionCommand(std::__1::basic_string const&,
       extensions::ActionInfo::Type, extensions::CommandService:: QueryType,
       extensions::Command*, bool*)
     - DNA-90600 Don???t report workspace visibility, when functionality is
     - DNA-90665 Collect music service statistics WP2
     - DNA-90773 Bad translation from english to spanish in UI
     - DNA-90789 Crash at opera::ThumbnailHelper::RunNextRequest()

Patch Instructions:

   To install this openSUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - openSUSE Leap 15.1:NonFree:

      zypper in -t patch openSUSE-2021-138=1

Package List:

   - openSUSE Leap 15.1:NonFree (x86_64):