Bug 2572

Summary: Security update for Opera to 11.51
Product: Mageia Reporter: Dave Hodgins <davidwhodgins>
Component: SecurityAssignee: Security team <security_officers>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: Normal CC: anssi.hannula, dmorganec, eeeemail, mageia, qa-bugs, sysadmin-bugs, thierry.vignaud
Version: 1Keywords: Security, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: http://www.opera.com/support/kb/view/1000/
Whiteboard:
Source RPM: opera-11.51 CVE:
Status comment:

Description Dave Hodgins 2011-08-31 10:49:58 CEST 
A security update for opera to 11.51 is now available.
Comment 1 Dave Hodgins 2011-08-31 11:06:29 CEST 
See also http://my.opera.com/desktopteam/blog/

Summary: Security update for Opera to => Security update for Opera to 11.51

Sander Lepik 2011-08-31 11:07:45 CEST

CC: (none) => sander.lepik
Component: RPM Packages => Security

Thierry Vignaud 2011-08-31 11:16:26 CEST

CC: (none) => thierry.vignaud
Assignee: bugsquad => security

Comment 2 Manuel Hiebel 2011-08-31 12:43:21 CEST 
opera 11.51 is in nonfree/updates_testing thanks to fwang

CC: (none) => qa-bugs
Source RPM: opera-11.50-1.mga1.nonfree.src.rpm => opera-11.51

Comment 3 Anssi Hannula 2011-08-31 15:39:07 CEST 
Suggested advisory:
===========
Opera 11.51 fixes a security issue which can cause unsecure web content to be shown as secure:
http://www.opera.com/support/kb/view/1000/

Additionally, an undisclosed security issue rated as low severity by Opera Software has been fixed.

A number of other non-security issues have also been fixed. For a more complete list of changes, see Opera changelog:
http://www.opera.com/docs/changelogs/unix/1151/
===========

Please test.

Keywords: (none) => Security
CC: (none) => anssi.hannula

Comment 4 Remco Rijnders 2011-08-31 16:30:37 CEST 
I tested on x86_64 (I use Opera all the time for my browsing). After I had removed the Opera package (not packaged by Mageia) the package installed fine and without issues.

Opera launched fine and opened all the tabs I had previously open.

Package is fine as far as I'm concerned!
Comment 5 claire robinson 2011-08-31 18:54:02 CEST 
I have installed and tested the basics i586, checked for the crash when clicking + in Speed Dial. Checked flash websites, tabs etc.

Dave might be more familiar with it to give it a more thorough workout. I haven't found any faults with it so far.

There is not much information given on the opera website to check for many of the fixes.

CC: (none) => eeeemail

Comment 6 Dave Hodgins 2011-08-31 20:27:45 CEST 
Can someone from the sysadmin team push the srpm
opera-11.51-1.mga1.nonfree.src.rpm
from Core Updates Testing to Core Updates.

We don't have a POC for the security bug, so just testing that it installs
cleanly, and appears to work ok.

I've tested rss, usenet, email, browsing, and irc chat.

Advisory:
===========
Opera 11.51 fixes a security issue which can cause insecure web content to be
shown as secure:
http://www.opera.com/support/kb/view/1000/

Additionally, an undisclosed security issue rated as low severity by Opera
Software has been fixed.

A number of other non-security issues have also been fixed. For a more complete
list of changes, see Opera changelog:
http://www.opera.com/docs/changelogs/unix/1151/
===========

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Comment 7 Dave Hodgins 2011-08-31 22:19:00 CEST 
Sorry, my Mistake. opera should be move from
Nonfree Updates Testing to Nonfree Updates.
Comment 8 D Morgan 2011-08-31 22:20:53 CEST 
update pushed

Status: NEW => RESOLVED
CC: (none) => dmorganec
Resolution: (none) => FIXED