Opera has updated its browser to plug a pair of critical security holes.

Version 9.62 of the browser fixes a vulnerability in the History Search function which creates a possible mechanism for hacker to inject code. The flaw, discovered by researcher Aviv Raff, left Opera users at risk of attack simply by visiting booby-trapped webpages.

The update also fixes a bug involving the handling of javascript URLs in the Links panel. The flaw left surfers at risk from cross-site scripting attacks when visiting web pages containing frames.

Opera 9.62 also incorporates the Opera Presto 2.1.1 user agent engine, as explained in an advisory by the Norwegian software firm here. ®

Related stories

• Opera Mini makes 4.2 (25 November 2008)
• Jesus Phone won't go to the Opera (31 October 2008)
• Opera scrambles to quash zero-day bug in freshly-patched browser (27 October 2008)
• Opera update quietly fixes bug brace (10 October 2008)
• Opera boss: Imitation is flattering (3 September 2008)
• Internet Explorer - now with 35% less FAIL (29 August 2008)
• Opera update draws the curtain on seven security vulns (21 August 2008)