Attachment #110323 for bug #151471

View | Details | Raw Unified | Return to bug 151471 | Differences between
Collapse All | Expand All





-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
  <vuln vid="aab187d4-e0f3-11df-b1ea-001999392805">
    <topic>opera -- multiple vulnerabilities</topic>
    <affects>
      <package>
        <name>opera</name>
        <range><lt>10.63</lt></range>
      </package>
    </affects>
    <description>
      <body xmlns="http://www.w3.org/1999/xhtml">
        <p>The Opera Desktop Team reports:</p>
        <blockquote cite="http://www.opera.com/docs/changelogs/unix/1063/">
          <ul>
            <li>Fixed an issue that allowed cross-domain checks to be bypassed,
              allowing limited data theft using CSS, as reported by Isaac
              Dawson.</li>
            <li>Fixed an issue where manipulating the window could be used to
              spoof the page address.</li>
            <li>Fixed an issue with reloads and redirects that could allow
              spoofing and cross-site scripting.</li>
            <li>Fixed an issue that allowed private video streams to be
              intercepted, as reported by Nirankush Panchbhai of Microsoft
              Vulnerability Research.</li>
            <li>Fixed an issue that caused JavaScript to run in the wrong
              security context after manual interaction.</li>
          </ul>
        </blockquote>
      </body>
    </description>
    <references>
      <url>http://www.opera.com/support/kb/view/971/</url>
      <url>http://www.opera.com/support/kb/view/972/</url>
      <url>http://www.opera.com/support/kb/view/973/</url>
      <url>http://www.opera.com/support/kb/view/974/</url>
      <url>http://www.opera.com/support/kb/view/976/</url>
    </references>
    <dates>
      <discovery>2010-10-12</discovery>
      <entry>2010-10-26</entry>
    </dates>
  </vuln>
  
  <vuln vid="dd943fbb-d0fe-11df-95a8-00219b0fc4d8">
    <topic>apr -- multiple vunerabilities</topic>
    <affects>

Return to bug 151471

Lines 34-39 Link Here

(-)vuxml/vuln.xml (+42 lines)
34		34
35	-->	35	-->
36	<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">	36	<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
		37	<vuln vid="aab187d4-e0f3-11df-b1ea-001999392805">
		38	<topic>opera -- multiple vulnerabilities</topic>
		39	<affects>
		40	<package>
		41	<name>opera</name>
		42	<range><lt>10.63</lt></range>
		43	</package>
		44	</affects>
		45	<description>
		46	<body xmlns="http://www.w3.org/1999/xhtml">
		47	<p>The Opera Desktop Team reports:</p>
		48	<blockquote cite="http://www.opera.com/docs/changelogs/unix/1063/">
		49	<ul>
		50	<li>Fixed an issue that allowed cross-domain checks to be bypassed,
		51	allowing limited data theft using CSS, as reported by Isaac
		52	Dawson.</li>
		53	<li>Fixed an issue where manipulating the window could be used to
		54	spoof the page address.</li>
		55	<li>Fixed an issue with reloads and redirects that could allow
		56	spoofing and cross-site scripting.</li>
		57	<li>Fixed an issue that allowed private video streams to be
		58	intercepted, as reported by Nirankush Panchbhai of Microsoft
		59	Vulnerability Research.</li>
		60	<li>Fixed an issue that caused JavaScript to run in the wrong
		61	security context after manual interaction.</li>
		62	</ul>
		63	</blockquote>
		64	</body>
		65	</description>
		66	<references>
		67	<url>http://www.opera.com/support/kb/view/971/</url>
		68	<url>http://www.opera.com/support/kb/view/972/</url>
		69	<url>http://www.opera.com/support/kb/view/973/</url>
		70	<url>http://www.opera.com/support/kb/view/974/</url>
		71	<url>http://www.opera.com/support/kb/view/976/</url>
		72	</references>
		73	<dates>
		74	<discovery>2010-10-12</discovery>
		75	<entry>2010-10-26</entry>
		76	</dates>
		77	</vuln>
		78
37	<vuln vid="dd943fbb-d0fe-11df-95a8-00219b0fc4d8">	79	<vuln vid="dd943fbb-d0fe-11df-95a8-00219b0fc4d8">
38	<topic>apr -- multiple vunerabilities</topic>	80	<topic>apr -- multiple vunerabilities</topic>
39	<affects>	81	<affects>