openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2021:0139-1
Rating:             moderate
References:         
Cross-References:   CVE-2020-15995 CVE-2020-16043 CVE-2021-21106
                    CVE-2021-21107 CVE-2021-21108 CVE-2021-21109
                    CVE-2021-21110 CVE-2021-21111 CVE-2021-21112
                    CVE-2021-21113 CVE-2021-21114 CVE-2021-21115
                    CVE-2021-21116
Affected Products:
                    openSUSE Leap 15.2:NonFree
______________________________________________________________________________

   An update that fixes 13 vulnerabilities is now available.

Description:

   This update for opera fixes the following issues:

   - Update to version 73.0.3856.344
     - CHR-8265 Update chromium on desktop-stable-87-3856 to 87.0.4280.141
     - DNA-90625 [Mac] Crash at opera::TabView::
       GetPaintData(opera::TabState) const
     - DNA-90735 Crash at opera::BrowserSidebarModel::GetItemVisible
       (opera::BrowserSidebarItem const*) const
     - DNA-90780 Crash at extensions::CommandService::GetExtension
       ActionCommand(std::__1::basic_string const&, extensions::
       ActionInfo::Type, extensions::CommandService::QueryType,
       extensions::Command*, bool*)
     - DNA-90821 Crash at opera::BrowserSidebarController::
       Action(opera::BrowserSidebarItem const*,
       opera::BrowserSidebarItemContentView*)
   - The update to chromium 87.0.4280.141 fixes following issues:
     CVE-2021-21106, CVE-2021-21107, CVE-2021-21108, CVE-2021-21109,
     CVE-2021-21110, CVE-2021-21111, CVE-2021-21112, CVE-2021-21113,
     CVE-2020-16043, CVE-2021-21114, CVE-2020-15995, CVE-2021-21115,
     CVE-2021-21116

   - Update to version 73.0.3856.329
     - DNA-89156 Crash at content::RenderViewHostImpl::OnFocus()
     - DNA-89731 [Mac] Bookmarks bar overlaps Babe section when hovering the
       OMenu
     - DNA-90189 Music service portal logotypes are blurred on Win
     - DNA-90336 add session data schema
     - DNA-90399 Address bar dropdown suggestions overlap each other
     - DNA-90520 Crash at absl::raw_logging_internal::RawLog(absl::
       LogSeverity, char const*, int, char const*, ???)
     - DNA-90538 Crash at extensions::CommandService::
       GetExtensionActionCommand(std::__1::basic_string const&,
       extensions::ActionInfo::Type, extensions::CommandService:: QueryType,
       extensions::Command*, bool*)
     - DNA-90600 Don???t report workspace visibility, when functionality is
       disabled.
     - DNA-90665 Collect music service statistics WP2
     - DNA-90773 Bad translation from english to spanish in UI
     - DNA-90789 Crash at opera::ThumbnailHelper::RunNextRequest()


Patch Instructions:

   To install this openSUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - openSUSE Leap 15.2:NonFree:

      zypper in -t patch openSUSE-2021-139=1



Package List:

   - openSUSE Leap 15.2:NonFree (x86_64):

      opera-73.0.3856.344-lp152.2.30.1


References:

   https://www.suse.com/security/cve/CVE-2020-15995.html
   https://www.suse.com/security/cve/CVE-2020-16043.html
   https://www.suse.com/security/cve/CVE-2021-21106.html
   https://www.suse.com/security/cve/CVE-2021-21107.html
   https://www.suse.com/security/cve/CVE-2021-21108.html
   https://www.suse.com/security/cve/CVE-2021-21109.html
   https://www.suse.com/security/cve/CVE-2021-21110.html
   https://www.suse.com/security/cve/CVE-2021-21111.html
   https://www.suse.com/security/cve/CVE-2021-21112.html
   https://www.suse.com/security/cve/CVE-2021-21113.html
   https://www.suse.com/security/cve/CVE-2021-21114.html
   https://www.suse.com/security/cve/CVE-2021-21115.html
   https://www.suse.com/security/cve/CVE-2021-21116.html