Opera 12.01 patched five security flaws
“The first of these is ranked as crucial by the company and impacts all supported systems,” The H Security reviews. “According to Opera, certain URL constructs can cause its web browser to allocate the wrong amount of memory for saving the address; this can be utilized by an enemy to overwrite irrelevant memory with harmful data, possibly resulting in to the execution of arbitrary code.”
“Opera also addressed an issue where certain characters in HTML could incorrectly be ignored, thereby facilitating cross-site scripting attacks; an issue where small windows could be used to trick users into executing downloads; an issue where an element’s HTLM content could be incorrectly returned without escaping, thereby bypassing some HTML sanitizers; and [a] low severity issue that the company will detail at a later date,”Infosecurity reviewed.
“This is the first update to the Opera browser since version 12.0 was released in mid-June,” writes Threatpost’s Dennis Fisher.
“Existing Opera 12.0 or earlier users can run an update check in the browser to download and install the latest version of it automatically,” wrote Ghacks Technology News’ Martin Brinkmann. “This is done with a click on the Opera button, and the selection of Help > Check for updates from the menu that opens up.”