Opera Software has just released Opera 10.54, which is a highly recommended security update. This release fixes multiple security issues, including one which allowed Opera to be used as a vehicle for exploiting a flaw in font handling in Windows operating system. Here is the full changelog:
- Prevented Opera from being used as a vector for a font issue in the underlying operating system, as reported by Microsoft’s security team; see our advisory.
- Fixed an extremely severe issue; details will be disclosed at a later date.
- Fixed a highly severe issue; details will be disclosed at a later date.
- Fixed a moderately severe issue; details will be disclosed at a later date.
- Fixed a less severe issue; details will be disclosed at a later date.
As you can see, the Norwegian browser maker has been surprisingly vague while describing the security vulnerabilities that have been fixed in this release. The most probable reason for this is “responsible disclosure”. Opera’s changelog strongly hints that other applications (most probably browsers) are also vulnerable to the same exploits.
Last week, Opera Software released Opera 10.60 Beta 1, which propelled Opera to the front of the pack once again, in terms of rendering speed. The good news is that, if you are using Opera 10.60 Beta 1 or a newer build, you are already protected and you don’t need to downgrade to Opera 10.54.