Opera Release Closes Security Hole

Monday, May 14, 2012 @ 04:05 PM gHale


Version 11.64 of the Opera web browser closes a critical hole that attackers could exploit to inject malicious code into a victim’s system.

Some undisclosed formulations of URLs caused the browser to allocate the incorrect amount of memory for storing the address, the company said.

RELATED STORIES
Adobe Mac Updates Silenced
Critical Flash Player Hole Closed
Adobe Patches Flash Player, Again
Adobe Patches ColdFusion Flaw

When the program attempted to store the address, an attacker could overwrite data into unrelated memory, resulting in a crash and the execution of arbitrary code.

Non-security-related fixes include correcting an issue that prevented some secure pages, such as PayPal and eBay, from loading, and problems when using the AMD loader from the Dojo Toolkit.

A full list of the fixes and improvements in the update can be found in the Windows, Mac and UNIX change logs. Version 11.64 of Opera is available to download for Windows, Mac OS X, Linux, FreeBSD and Solaris.



Leave a Reply

You must be logged in to post a comment.