diff options
| author | delphij <delphij@FreeBSD.org> | 2011-12-14 04:35:31 +0800 |
|---|---|---|
| committer | delphij <delphij@FreeBSD.org> | 2011-12-14 04:35:31 +0800 |
| commit | 454a1d749161a33a9367d05dea7e9edacab8fcda (patch) | |
| tree | 7a3a852cda5b72090001400ce20848ac06ffc30a /security | |
| parent | cfa214d4d1f458678963f70711856584f594b8a9 (diff) | |
| download | freebsd-ports-gnome-454a1d749161a33a9367d05dea7e9edacab8fcda.tar.gz freebsd-ports-gnome-454a1d749161a33a9367d05dea7e9edacab8fcda.tar.zst freebsd-ports-gnome-454a1d749161a33a9367d05dea7e9edacab8fcda.zip | |
Document Opera multiple vulnerabilities.
Requested by: tabthorpe
Feature safe: yes
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 1ff24756ae20..01d3fabe69db 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -47,6 +47,56 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="a4a809d8-25c8-11e1-b531-00215c6a37bb"> + <topic>opera -- multiple vulnerabilities</topic> + <affects> + <package> + <name>opera</name> + <name>linux-opera</name> + <range><lt>11.60</lt></range> + </package> + <package> + <name>opera-devel</name> + <range><lt>11.60,1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Opera software reports:</p> + <blockquote cite="http://www.opera.com/docs/changelogs/unix/1160/"> + <ul> + <li>Fixed a moderately severe issue; details will be + disclosed at a later date</li> + <li>Fixed an issue that could allow pages to set cookies + or communicate cross-site for some top level domains; + see our <a href="http://www.opera.com/support/kb/view/1003/">advisory</a></li> + <li>Improved handling of certificate revocation corner + cases</li> + <li>Added a fix for a weakness in the SSL v3.0 and TLS 1.0 + specifications, as reported by Thai Duong and Juliano Rizzo; + see our <a href="http://www.opera.com/support/kb/view/1004/">advisory</a></li> + <li>Fixed an issue where the JavaScript "in" operator + allowed leakage of cross-domain information, as reported + by David Bloom; see our <a href="http://www.opera.com/support/kb/view/1005/">advisory</a></li> + </ul> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2011-3389</cvename> + <cvename>CVE-2011-4681</cvename> + <cvename>CVE-2011-4682</cvename> + <cvename>CVE-2011-4683</cvename> + <url>http://www.opera.com/support/kb/view/1003/</url> + <url>http://www.opera.com/support/kb/view/1004/</url> + <url>http://www.opera.com/support/kb/view/1005/</url> + </references> + <dates> + <discovery>2011-12-06</discovery> + <entry>2011-12-13</entry> + </dates> + </vuln> + <vuln vid="68ac6266-25c3-11e1-b63a-00262d5ed8ee"> <topic>chromium -- multiple vulnerabilities</topic> <affects> |