Opera Fixes XSS Hole

Thursday, January 26, 2012 @ 04:01 PM gHale


Version 11.61 of Opera is ready to go fixing bugs found in the existing builds and closes two security holes in the web browser.

Opera 11.61 addresses a “high” severity cross-site scripting (XSS) vulnerability that an attacker could exploit by bypassing the same origin policy.

RELATED STORIES
Chrome 16 Closes Security Holes
Hackers Prove Website Weaknesses
OpenSSL Patches Bug Offered in Fix
Google Looks at HTTPS Security

A second fixed issue, rated as “low” severity, is where remote pages could detect what local files a user has on their local machine.

Changes not related to security include an update to the default Speed Dials as well as fixes for the built-in email client and a number of bugs that caused the application to crash.

Users can find more details about the update in the Windows, Mac and UNIX change logs, as well as the security advisories. Opera 11.61 is now available to download for Windows, Mac OS X, Linux, FreeBSD and Solaris.



Leave a Reply

You must be logged in to post a comment.