FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

opera -- multiple vulnerabilities

Affected packages
	linux-opera	<	9.26
	opera	<	9.26
	opera-devel	<	9.26

Details

VuXML ID	30c560ff-e0df-11dc-891a-02061b08fc24
Discovery	2008-02-20
Entry	2008-02-22
Modified	2010-05-12

Opera Software ASA reports about multiple security fixes:

Fixed an issue where simulated text inputs could trick users into uploading arbitrary files, as reported by Mozilla.

Image properties can no longer be used to execute scripts, as reported by Max Leonov.

Fixed an issue where the representation of DOM attribute values could allow cross site scripting, as reported by Arnaud.lb.

[source]

References

CVE Name	CVE-2008-1080
CVE Name	CVE-2008-1081
URL	http://www.opera.com/docs/changelogs/freebsd/926/
URL	http://www.opera.com/support/search/view/877/
URL	http://www.opera.com/support/search/view/879/
URL	http://www.opera.com/support/search/view/880/