Release Notes: Several security vulnerabilities were resolved, such as large form inputs allowing execution of arbitrary code, the possibility of clickjacking attacks against internal "opera:" URLs, Web page access to files on the user's computer, and an issue where email passwords were not immediately deleted when deleting private data. Several further minor bug fixes and improvements were made.
Release Notes: This release replaces the code certificate used for signing the binary updates as well as updates to browser.js. This is a safety measure due to a recent attack on Opera Software's internal infrastructure.
Release Notes: The search bar's default engine can no longer be overridden by third-party apps. Minor security fixes were made for an RC4 encryption protocol weakness, for cookies incorrectly set for a top-level domain, and for and undisclosed moderately severe vulnerability.
Release Notes: A reoccurring crash when updating two or more extensions at one time was fixed.
Release Notes: Several security issues were resolved: DOM events manipulation could be used to execute arbitrary code; SVG clipPaths could allow execution of arbitrary code; CORS requests could omit the preflight request; and an undisclosed issue. Internal communication errors on Facebook were resolved. An issues on start-up without an Internet connection was fixed. An issue with image loading on back navigation was fixed.
Release Notes: A security issue was fixed where malformed GIF images could allow execution of arbitrary code. A security issue was fixed where repeated attempts to access a target site could trigger address field spoofing. An issue was fixed where private data could be disclosed to and modified by other computer users. Several general fixes and stability improvements were made. Usability of "Delete Private Data" was improved.