The canvas.createPattern function in Opera 9.x prior to 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote malicious users to obtain sensitive information (memory contents) via JavaScript.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
opera opera browser 9.0 |
||
opera opera browser 9.01 |
||
opera opera browser 9.02 |
||
opera opera browser 9.10 |
||
opera opera browser 9.20 |
||
opera opera browser 9.21 |
||
opera opera browser 9.12 |
Vulmon