openSUSE Security Update: Security update for opera
______________________________________________________________________________

Announcement ID: openSUSE-SU-2020:1952-1
Rating: important
References:
Cross-References: CVE-2020-15999 CVE-2020-16000 CVE-2020-16001
CVE-2020-16002 CVE-2020-16003 CVE-2020-16004
CVE-2020-16005 CVE-2020-16006 CVE-2020-16007
CVE-2020-16008 CVE-2020-16009 CVE-2020-16011

Affected Products:
openSUSE Leap 15.2:NonFree
openSUSE Leap 15.1:NonFree
______________________________________________________________________________

An update that fixes 12 vulnerabilities is now available.

Description:

This update for opera fixes the following issues:

Opera was updated to version 72.0.3815.320

– CHR-8177 Update chromium on desktop-stable-86-3815 to 86.0.4240.183
– DNA-89748 ???Manage Extensions??? dialog is displayed with preloaded
extensions
– DNA-89766 Address bar does not respond to actions

– The update to chromium 86.0.4240.183 fixes following issues:
CVE-2020-16004, CVE-2020-16005, CVE-2020-16006, CVE-2020-16007,
CVE-2020-16008, CVE-2020-16009, CVE-2020-16011

– Update to version 72.0.3815.200

– DNA-87150 Speed Dial tile can???t be dragged to proper place
– DNA-89632 Improve hovering over icons
– DNA-89647 [Light mode] Wrong URL color in ???Add Site??? section
– DNA-89791 Typo in Spanish

– The update to chromium 86.0.4240.111 fixes following issues:
CVE-2020-16000, CVE-2020-16001, CVE-2020-16002, CVE-2020-15999,
CVE-2020-16003

– Complete Opera 72.0 changelog at:
https://blogs.opera.com/desktop/changelog-for-72/

– Update to version 71.0.3770.271

– DNA-88353 Crash at opera::TabCyclerView::HighlightContents
(content::WebContents*, bool)
– DNA-89177 Device update request should only be called when FCM token
has changed
– DNA-89186 Handle device expired case in all server calls
– DNA-89202 Pages are rendered in dark mode when force dark mode prefs
were synced from Opera GX
– DNA-89247 [Mac] Fullscreen video broken if sidebar is hidden
– DNA-89298 Some elements of VPN popup are misaligned to design
– DNA-89305 Crash after closing Downloads pop-up

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

– openSUSE Leap 15.2:NonFree:

zypper in -t patch openSUSE-2020-1952=1

– openSUSE Leap 15.1:NonFree:

zypper in -t patch openSUSE-2020-1952=1

Package List:

– openSUSE Leap 15.2:NonFree (x86_64):

opera-72.0.3815.320-lp152.2.21.1

– openSUSE Leap 15.1:NonFree (x86_64):

opera-72.0.3815.320-lp151.2.33.1

References:

https://www.suse.com/security/cve/CVE-2020-15999.html
https://www.suse.com/security/cve/CVE-2020-16000.html
https://www.suse.com/security/cve/CVE-2020-16001.html
https://www.suse.com/security/cve/CVE-2020-16002.html
https://www.suse.com/security/cve/CVE-2020-16003.html
https://www.suse.com/security/cve/CVE-2020-16004.html
https://www.suse.com/security/cve/CVE-2020-16005.html
https://www.suse.com/security/cve/CVE-2020-16006.html
https://www.suse.com/security/cve/CVE-2020-16007.html
https://www.suse.com/security/cve/CVE-2020-16008.html
https://www.suse.com/security/cve/CVE-2020-16009.html
https://www.suse.com/security/cve/CVE-2020-16011.html_______________________________________________
openSUSE Security Announce mailing list — security-announce@lists.opensuse.org
To unsubscribe, email security-announce-leave@lists.opensuse.org
List Netiquette: https://en.opensuse.org/openSUSE:Mailing_list_netiquette
List Archives: https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org