homepage Welcome to WebmasterWorld Guest from
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Visit PubCon.com
Home / Forums Index / Browsers / Opera Browser Usage and Support
Forum Library, Charter, Moderator: open

Opera Browser Usage and Support Forum

Opera has fixed EVERY known security bug

 8:32 pm on Jan 30, 2007 (gmt 0)

Now here's something worth bragging about.

Opera is the only browser (among the big ones -- Internet Explorer (IE), Firefox, and Safari) to have patched 100% of its known security bugs, according to Secunia, a site that tracks security vulnerabilities in various applications...

Browser patches between Feb 2003 and Jan 2007:

IE6 -- 67% patched (out of 110 reported bugs).
IE7 -- 25% patched (out of 4 reported bugs).
Firefox 1 -- 87% patched (out of 39 reported bugs).
Firefox 2 -- 50% patched (out of 4 reported bugs).
Opera 8 -- 100% patched (out of 15 reported bugs).
Opera 9 -- 100% patched (out of 3 reported bugs).
Safari 1 -- 93% patched (out of 15 reported bugs).
Safari 2 -- 33% patched (out of 6 reported bugs).

OperaWatch article [operawatch.com]

[edited by: tedster at 12:03 am (utc) on Jan. 31, 2007]



 8:47 pm on Jan 30, 2007 (gmt 0)

15 out of 15 bugs/vulnerabilities vs. IE's 110 or Firefox's 39 because that's how many more people use those browsers.

Props to Opera for actually bending over and tying that shoelace though. Wish they could fix all the CSS issues so I don't have to worry about that.


 9:06 pm on Jan 30, 2007 (gmt 0)

Wish they could fix all the CSS issues so I don't have to worry about that.

Opera bugs can be reported here: [bugs.opera.com ]

As far as I know bugs reported through the Opera Bug Report Wizard goes directly into Opera's bug tracking system and are evaluated by Opera QA staff.

[edited by: Gorilla at 9:07 pm (utc) on Jan. 30, 2007]


 9:47 pm on Jan 30, 2007 (gmt 0)

15 bugs/vulnerabilities vs. IE's 110 or Firefox's 39 because that's how many more people use those browsers.

I've never realized that I was allowed to make more mistakes while programming if I expected lots of people to use a particular program. I always took the opposite approach actually... I guess I'll never get to work at a big company like Microsoft. :'-(


 9:59 pm on Jan 30, 2007 (gmt 0)

"Wish they could fix all the CSS issues so I don't have to worry about that." You mean they should fix the bugs in IE and firefox? Props to Opera if they do that!



 12:02 am on Jan 31, 2007 (gmt 0)

Opera is the only known browser to be fully compliant. The CSS problems you are having is that you are building for IE which is understanderstandable because that is what the majority of web surfers still use. Its sweet that opera pronounces its victories over security bugs, maybe this will make more people use it.


 3:04 am on Jan 31, 2007 (gmt 0)

Sounds like they just put a bullseye on their backs against the bad guys.


 4:48 am on Jan 31, 2007 (gmt 0)

Ahhhh, the cross browser css debate.
While Opera and Mozilla have remained closer to the the W3C standard it does not exclude them from the discrepencies they have between each other.

Try playing with wrapped div's with one sided borders that are floated left or right and look at the differences. They may not be nearly as dramatic as the issues you see between IE and Mozilla but the differences are still there.


 4:56 am on Jan 31, 2007 (gmt 0)

Hats off to Opera - the best and safest way to browse.


 11:54 am on Jan 31, 2007 (gmt 0)

Opera is the only known browser to be fully compliant.

Haha, nice try :)

Hats off to Opera though. It's good that they've fixed all externally reported security issues.


 12:31 pm on Jan 31, 2007 (gmt 0)

Congratulations to Opera.

But, let's not blow this out of proportion. Opera has a reported global browser market share of 0.5% to 1.0%.

To be fair to the others on the list, it would be nice to see how Opera performed under the same conditions that IE does with its percentage of market share.

Opera just hasn't made it to the table yet. I think the numbers need to be put into perspective. ;)


 2:49 pm on Jan 31, 2007 (gmt 0)

That is an ms fud pg1. That cop out has been spread by MS for years. It just doesn't stand up in the real world. It is to try to get you to believe that security problems are a way of life. More importantly, it is to hide their response to the problem. Yes, there are security problems, but the most important issue is their response to those problems once discovered! Opera, acts almost instantly to issues - while Microsoft goes on vacation and sticks their collective head in the sand and gets to them later than sooner.

Opera (as well as FireFox and Safari) have been squarely under the attack of hackers and exploiters for years. With 10's of millions of daily users, hackers and botnet operators would dream of finding a hole in Opera. It is known that every time a hole is found in IE, the same exploit method and it's relatives is attempted against the other browsers. Just the prosecurity guys at the security sites alone like Secunia take regular shots attempts at finding holes in Opera with all the current tactics. If opera had more holes - they would be being found.

The fact is that Opera is a 10 year plus old product that put security and safety of the browser as the first consideration of any change. That mantra was put in the DNA of the company from day 1.

When they have had a security issue, they have immediately moved it to an emergency level priority on their list of things to do. They do not waste any time. I have heard the phrase "fix it in 24 or die" used. They want to fix any critical security problem within 24 hours.

Now, compare that with Internet Explorer, who has several open bugs going back months - if not years that they have not fixed.

IE6 -- 67% patched (out of 110 reported bugs).
IE7 -- 25% patched (out of 4 reported bugs).

If that were opera, I have no doubt they would be fixed asap and a working build would be in your hands in short order.

Why hasn't MS taken security of the browser more seriously? They have 100 times the resources of the other browsers and 100 times the self interest in fixing them. There is no excuse that those bugs have not been fixed by Microsoft.


 4:33 am on Feb 1, 2007 (gmt 0)

Now fix the Wii browser, Opera!

[edited by: Raymond at 4:34 am (utc) on Feb. 1, 2007]


 7:06 am on Feb 1, 2007 (gmt 0)

From Wiki link above
Opera DS (Nintendo DS Browser) also fails [the acid test2], since it is based on the Opera 8 rendering engine, which did not yet pass the test.


 6:31 pm on Feb 1, 2007 (gmt 0)

Thanks for this thread! It reminded me to upgrade from Opera 9.0 to 9.10.

JAB Creations

 9:13 pm on Feb 26, 2007 (gmt 0)

System: The following message was spliced on to this thread from: http://www.webmasterworld.com/opera_browser/3264704.htm [webmasterworld.com] by encyclo - 5:42 pm on Feb. 26, 2007 (utc -5)

I wanted to comment on the Opera security bug post but couldn't; here's my two cents anyway. Opera may be closed source and the Opera team much smaller with fewer resources, and that is their advantage! In regards to CSS it isn't perfect and I rate the Presto rendering engine as the second best. However there are at least several bugs I can point out. The only bug in any of my code that Gecko still hasn't shaken off is a bug where block level anchors add a 1px border in addition to the total width which creates horizontal scrollbars on overflow divisible elements which can create accessibility issues when returning to the top of the page. However as far as Presto is concerned there are a few though very minor bugs and also a lack of support for a few things. The lack of support for the focus pseudo-element ranks Opera only neutral in regards to accessibility. Opera (just as IE6 and IE7) also creates border chaos with styled submit buttons when you give or remove focus to it's associated text input field. This is not acceptable for pixel-perfect designs though I have been working on a work-around using JavaScript though honestly one would expect even such minor bugs to be stomped by now?

The bug that stands out the most is a reverse top-border bottom-padding overflow divisible element bug. Give an overflow element that is sized by it's position (no height or width, set it by top, right, bottom, left) and give the top border about 50px. It will create a bottom-padding inside the overflow and this happens in Opera 7.23 as well as another version I can't recall.

Most people will never deal with these bugs which is understandable but they do exist. Though the CSS support is superior to all other rendering engines save Gecko. KHTML, then Webkit, then Trident, then iCab would be how I rate the rendering engines following Presto. I'd like to see the great functionality of Opera organized to be more visually user-friendly to the less savvy web surfers though which all browsers need to sorely improve upon. Nothing like staring at buttons without labels to scare the inexperienced off.

- John


 10:53 pm on Feb 26, 2007 (gmt 0)

Thanks, John. Those rendering bugs do not carry any security implications, though - correct?


 2:52 pm on Mar 8, 2007 (gmt 0)

Opera 7.23

Please tell me you use a more recent version...

Global Options:
 top home search open messages active posts  

Home / Forums Index / Browsers / Opera Browser Usage and Support
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved