openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2023:0044-1
Rating:             important
References:         
Cross-References:   CVE-2023-0471 CVE-2023-0472 CVE-2023-0473
                    CVE-2023-0474
CVSS scores:
                    CVE-2023-0471 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
                    CVE-2023-0472 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
                    CVE-2023-0473 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
                    CVE-2023-0474 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:
                    openSUSE Leap 15.4:NonFree
______________________________________________________________________________

   An update that fixes four vulnerabilities is now available.

Description:

   This update for opera fixes the following issues:

   Update to 95.0.4635.25

     * CHR-9173 Update Chromium on desktop-stable-109-4635 to 109.0.5414.120
     * DNA-104150 Turn on #consent-flow-settings on master
     * DNA-104733 Crash at extensions::SyncPrivateGetSyncStateFunction::Run()
     * DNA-104761 Translations for O95
     * DNA-104814 [StartPage] Inline autocomplete messes up selection
     * DNA-104887 Promote O95 to stable
     * DNA-104908 Enable #consent-flow-settings on all streams

   - Complete Opera 95.0 changelog at:
     https://blogs.opera.com/desktop/changelog-for-95/

   - The update to chromium 109.0.5414.120 fixes following issues:
     CVE-2023-0471, CVE-2023-0472, CVE-2023-0473, CVE-2023-0474


   - Update to 94.0.4606.76

     * DNA-104276 News categories layers messed up in other languages

   - Update to 94.0.4606.65

     * DNA-102726 [SD][Folder] When trying to drop SD from folder back to
       folder, new folder is created
     * DNA-102730 [SD][Add to Opera] Remove strip at the top of modal and
       move 'x' button to be in line with ‘Add to Opera' text
     * DNA-102732 [SD][Folders] Add option to merge folders by drag and drop
     * DNA-102747 [SD][Folders] Empty SD folder is not visible
     * DNA-102763 [SD] Animate changing between Use bigger tiles
       on and off
     * DNA-102847 [SD][Folders] SD displayed on folder tile should be aligned
       to left
     * DNA-102855 [SD] Add SD by drag and dropping link
     * DNA-102882 [SD][News][Continue on][Suggestion] Do not focus on
       opened page when opening in new tab
     * DNA-102936 [News Categories] Categories become invisible after
       minimizing browser window
     * DNA-102988 [News categories] Only games category displayed after
       changing browser language
     * DNA-103000 [News Categories] Selected categories not saved after
       restarting browser
     * DNA-103001 [News Categories] 'x' button invisible in 'Choose language
       and country' on light theme
     * DNA-103002 [News Categories] Changes in 'Choose language and country'
       modal not saved on esc or clicking outside of modal
     * DNA-103015 [News locales] Pref startpage.news_locales udated
       only when close/done the moda, initial value not set
     * DNA-103097 [Settings] Enable 'Adjust Speed Dial animations for slower
       hardware' settings option to have effect
     * DNA-103098 [SD] No big icon for decathlon.pl
     * DNA-103110 Strange animation when dragging tiles
     * DNA-103112 [Continue on] Offers opened on current tab
     * DNA-103116 [Continue on] Not possible to drag tiles from continue
       on section
     * DNA-103131 [Feedback] Implement 'Rate Opera' element and modal
     * DNA-103193 [SD][Edit] Set OK button to read only when typed in address
       is invalid
     * DNA-103293 [SD][Add to Opera] '/' added in autocomplete for URL
     * DNA-103360 [SD][Add to Opera] Tile graphic does not update
       automatically when adding suggestion through Add to Opera modal
     * DNA-103393 [Continue on] Start page needs to be reloaded in
       order to show "Continue on" section
     * DNA-103545 [Banner] Wide banner have no background
     * DNA-103550 [Banners] Black Friday deals promoted on Start Page with
       related settings off
     * DNA-103569 No margin under suggested speed dials
     * DNA-103578 [SD] Impressions should be reported every time user comes
       back to start page tab
     * DNA-103593 [Navigation] Change which elements on start page are
       possible to navigate through with keyboard shortcuts
     * DNA-103595 [Navigation] Show which element is focused when navigating
       with keyboard shortcuts
     * DNA-103605 Dark stripe blinks in Speed Dial Search box when changing
       color mode
     * DNA-103618 [SD][Folder] Not possible to drag SD into empty folder
     * DNA-103619 [SD][Suggestions] Blue border on tile when it is being
       dragged
     * DNA-103678 Font modification from themes not applied
     * DNA-103723 [SD][Folders][Edit] Confirm change to SD folder name with
       Enter key
     * DNA-103738 Disable Updater diagnostic metrics that surpass session
       lifetime and verify if it solves DNA-102940
     * DNA-103739 Try to record metrics disabled in DNA-103738 in histograms.
     * DNA-103759 [SD][Add to Opera] Wrong position of Add to Opera button
     * DNA-103781 [News Categories] Choose language and country shows
       options in 2 columns instead of adapting to wider window
     * DNA-103787 [Continue on] No margin between search box and continue on
       section
     * DNA-103908 [Search box] Blurred text in search box suggestions in dark
       theme
     * DNA-103909 [SD] Not possible to drop SD in empty place when hovering
       over edge of other tile
     * DNA-103911 [SD][Add to Opera] Modal dialog stays open after adding
       suggestion to SD
     * DNA-103915 [SD][Folders] Difficult to drop SD from start page between
       SD in folder
     * DNA-103932 [SD][Add to Opera] Remove  and / from tile title
       when adding SD
     * DNA-103933 [SD][Add to Opera] Do not return focus to the end
       of the URL after pressing backspace when editing it
     * DNA-104005 Change activation pop-up
     * DNA-104035 [SD] Browser crashes when dragging tiles with fresh profile
     * DNA-104040 Can not drag tile to open folder
     * DNA-104049 Can not drag suggestion when only [+] tile and no speed
       dials
     * DNA-104053 Right mouse click open speed dial instead of context menu
     * DNA-104055 News article opens in active tab
     * DNA-104080 Tab not activated after opening speed dial folder in new
       tabs
     * DNA-104088 Create new welcome pop-up for Rich Hints
     * DNA-104139 [Weather] Long time to load Weather widget after browser
       was running for some time
     * DNA-104141 [News] Improve news loading UX
     * DNA-104167 Add feature flag #speed-dial-custom-image
     * DNA-104168 Allow setting custom image for Speed Dial
     * DNA-104196 [News Categories] News categories do not work
     * DNA-104201 Set back Baidu as default search engine in China
     * DNA-104218 [Search box] Search engine icon does not change
     * DNA-104251 Add option to reset to default icon
     * DNA-104256 [Suggestions][ContinueOn][AMG] Scroll button does not
       update its visibility when resizing window
     * DNA-104313 Search bar on Speed Dials doesn't fit it size
     * DNA-104382 Shopping corner is unredible in light theme and dark
       wallpaper

   - Changes in 94.0.4606.54

     * CHR-1854 Run gn hooks in gyp_chromium
     * DNA-102035 [Settings] Shortcut search does not work
     * DNA-103451 Add impression and click events for VPN keyword suggestion
     * DNA-103643 Prepare for showing Lucid Mode button without text
     * DNA-103675 URL shown for promoted VPN suggestion
     * DNA-104201 Set back Baidu as default search engine in China
     * DNA-104234 Opera update resets all consents to False value
     * DNA-104278 Don’t show Lucid Mode button on videos when hardware
       acceleration is off


Patch Instructions:

   To install this openSUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - openSUSE Leap 15.4:NonFree:

      zypper in -t patch openSUSE-2023-44=1



Package List:

   - openSUSE Leap 15.4:NonFree (x86_64):

      opera-95.0.4635.25-lp154.2.38.1


References:

   .suse.com/security/cve/CVE-2023-0471.html
   .suse.com/security/cve/CVE-2023-0472.html
   .suse.com/security/cve/CVE-2023-0473.html
   .suse.com/security/cve/CVE-2023-0474.html

openSUSE: 2023:0044-1 important: opera

February 12, 2023
An update that fixes four vulnerabilities is now available

Description

This update for opera fixes the following issues: Update to 95.0.4635.25 * CHR-9173 Update Chromium on desktop-stable-109-4635 to 109.0.5414.120 * DNA-104150 Turn on #consent-flow-settings on master * DNA-104733 Crash at extensions::SyncPrivateGetSyncStateFunction::Run() * DNA-104761 Translations for O95 * DNA-104814 [StartPage] Inline autocomplete messes up selection * DNA-104887 Promote O95 to stable * DNA-104908 Enable #consent-flow-settings on all streams - Complete Opera 95.0 changelog at: https://blogs.opera.com/desktop/changelog-for-95/ - The update to chromium 109.0.5414.120 fixes following issues: CVE-2023-0471, CVE-2023-0472, CVE-2023-0473, CVE-2023-0474 - Update to 94.0.4606.76 * DNA-104276 News categories layers messed up in other languages - Update to 94.0.4606.65 * DNA-102726 [SD][Folder] When trying to drop SD from folder back to folder, new folder is created * DNA-102730 [SD][Add to Opera] Remove strip at the top of modal and move 'x' button to be in line with ‘Add to Opera' text * DNA-102732 [SD][Folders] Add option to merge folders by drag and drop * DNA-102747 [SD][Folders] Empty SD folder is not visible * DNA-102763 [SD] Animate changing between Use bigger tiles on and off * DNA-102847 [SD][Folders] SD displayed on folder tile should be aligned to left * DNA-102855 [SD] Add SD by drag and dropping link * DNA-102882 [SD][News][Continue on][Suggestion] Do not focus on opened page when opening in new tab * DNA-102936 [News Categories] Categories become invisible after minimizing browser window * DNA-102988 [News categories] Only games category displayed after changing browser language * DNA-103000 [News Categories] Selected categories not saved after restarting browser * DNA-103001 [News Categories] 'x' button invisible in 'Choose language and country' on light theme * DNA-103002 [News Categories] Changes in 'Choose language and country' modal not saved on esc or clicking outside of modal * DNA-103015 [News locales] Pref startpage.news_locales udated only when close/done the moda, initial value not set * DNA-103097 [Settings] Enable 'Adjust Speed Dial animations for slower hardware' settings option to have effect * DNA-103098 [SD] No big icon for decathlon.pl * DNA-103110 Strange animation when dragging tiles * DNA-103112 [Continue on] Offers opened on current tab * DNA-103116 [Continue on] Not possible to drag tiles from continue on section * DNA-103131 [Feedback] Implement 'Rate Opera' element and modal * DNA-103193 [SD][Edit] Set OK button to read only when typed in address is invalid * DNA-103293 [SD][Add to Opera] '/' added in autocomplete for URL * DNA-103360 [SD][Add to Opera] Tile graphic does not update automatically when adding suggestion through Add to Opera modal * DNA-103393 [Continue on] Start page needs to be reloaded in order to show "Continue on" section * DNA-103545 [Banner] Wide banner have no background * DNA-103550 [Banners] Black Friday deals promoted on Start Page with related settings off * DNA-103569 No margin under suggested speed dials * DNA-103578 [SD] Impressions should be reported every time user comes back to start page tab * DNA-103593 [Navigation] Change which elements on start page are possible to navigate through with keyboard shortcuts * DNA-103595 [Navigation] Show which element is focused when navigating with keyboard shortcuts * DNA-103605 Dark stripe blinks in Speed Dial Search box when changing color mode * DNA-103618 [SD][Folder] Not possible to drag SD into empty folder * DNA-103619 [SD][Suggestions] Blue border on tile when it is being dragged * DNA-103678 Font modification from themes not applied * DNA-103723 [SD][Folders][Edit] Confirm change to SD folder name with Enter key * DNA-103738 Disable Updater diagnostic metrics that surpass session lifetime and verify if it solves DNA-102940 * DNA-103739 Try to record metrics disabled in DNA-103738 in histograms. * DNA-103759 [SD][Add to Opera] Wrong position of Add to Opera button * DNA-103781 [News Categories] Choose language and country shows options in 2 columns instead of adapting to wider window * DNA-103787 [Continue on] No margin between search box and continue on section * DNA-103908 [Search box] Blurred text in search box suggestions in dark theme * DNA-103909 [SD] Not possible to drop SD in empty place when hovering over edge of other tile * DNA-103911 [SD][Add to Opera] Modal dialog stays open after adding suggestion to SD * DNA-103915 [SD][Folders] Difficult to drop SD from start page between SD in folder * DNA-103932 [SD][Add to Opera] Remove and / from tile title when adding SD * DNA-103933 [SD][Add to Opera] Do not return focus to the end of the URL after pressing backspace when editing it * DNA-104005 Change activation pop-up * DNA-104035 [SD] Browser crashes when dragging tiles with fresh profile * DNA-104040 Can not drag tile to open folder * DNA-104049 Can not drag suggestion when only [+] tile and no speed dials * DNA-104053 Right mouse click open speed dial instead of context menu * DNA-104055 News article opens in active tab * DNA-104080 Tab not activated after opening speed dial folder in new tabs * DNA-104088 Create new welcome pop-up for Rich Hints * DNA-104139 [Weather] Long time to load Weather widget after browser was running for some time * DNA-104141 [News] Improve news loading UX * DNA-104167 Add feature flag #speed-dial-custom-image * DNA-104168 Allow setting custom image for Speed Dial * DNA-104196 [News Categories] News categories do not work * DNA-104201 Set back Baidu as default search engine in China * DNA-104218 [Search box] Search engine icon does not change * DNA-104251 Add option to reset to default icon * DNA-104256 [Suggestions][ContinueOn][AMG] Scroll button does not update its visibility when resizing window * DNA-104313 Search bar on Speed Dials doesn't fit it size * DNA-104382 Shopping corner is unredible in light theme and dark wallpaper - Changes in 94.0.4606.54 * CHR-1854 Run gn hooks in gyp_chromium * DNA-102035 [Settings] Shortcut search does not work * DNA-103451 Add impression and click events for VPN keyword suggestion * DNA-103643 Prepare for showing Lucid Mode button without text * DNA-103675 URL shown for promoted VPN suggestion * DNA-104201 Set back Baidu as default search engine in China * DNA-104234 Opera update resets all consents to False value * DNA-104278 Don’t show Lucid Mode button on videos when hardware acceleration is off

 

Patch

Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4:NonFree: zypper in -t patch openSUSE-2023-44=1


Package List

- openSUSE Leap 15.4:NonFree (x86_64): opera-95.0.4635.25-lp154.2.38.1


References

.suse.com/security/cve/CVE-2023-0471.html .suse.com/security/cve/CVE-2023-0472.html .suse.com/security/cve/CVE-2023-0473.html .suse.com/security/cve/CVE-2023-0474.html


Severity
Announcement ID: openSUSE-SU-2023:0044-1
Rating: important
Affected Products: openSUSE Leap 15.4:NonFree .

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved