Bug 89435 - Update www/opera to version 8.51 (security update)
Summary: Update www/opera to version 8.51 (security update)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Pav Lucistnik
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-11-22 21:00 UTC by Arjan van Leeuwen
Modified: 2005-11-22 21:59 UTC (History)
0 users

See Also:


Attachments
opera.diff (21.66 KB, patch)
2005-11-22 21:00 UTC, Arjan van Leeuwen
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Arjan van Leeuwen 2005-11-22 21:00:29 UTC

This patch updates www/opera to version 8.51 (20051114). This version contains a
security fix:

Updated Opera's wrapper script to not run commands included with URLs passed from other applications. Vulnerability reported in Secunia Advisory 16907.
Note that the update also modifies behavior for passed URLs, which will no longer work if quoted. That is, openURL(www.example.com) will work, openURL('www.example.com') will not.

Complete changelog: http://www.opera.com/docs/changelogs/freebsd/851/
Comment 1 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-22 21:42:54 UTC
Responsible Changed
From-To: freebsd-ports-bugs->pav

This looks interesting
Comment 2 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-22 21:57:00 UTC
State Changed
From-To: open->closed

Committed, thanks!