NotScripts is available for Opera 11.10 or newer. the installation process is a bit on the complicated side. Here are the instructions on how to install NotScripts correctly.

• Install the extension. You can install the latest NotScripts version right from the Opera Extensions repository.
• Close the Opera window and re-open Opera.
• Click the NotScripts button in the Opera toolbar.
  It would show you a message saying you to set User JS Storage Quota to 5000. Click the message and it will take you to the ‘User JS Storage Quota’ setting.
• Change the value of the setting from 0 to 5000.
• Click the Save button. You might need to scroll down to find the Save button.
• You may need to restart the Opera browser before the changes take effect.

Opera’s Notscript, unlike NoScript comes with three different script blocking mode. The default mode is whitelist which blocks all scripts except those that are run from whitelisted domains. Blacklist, the other option allows all scripts by default and blocks only scripts on a user maintained blacklist (much like the Firefox add-on YesScript). The last mode Whitelist + Same Origin uses the whitelist approach to block all scripts but allows scripts running on the same domain the user is on automatically.

So more choice in this regard which is really nice. When you visit a site you need to click on the NotScript icon to display the list of blocked scripts. There is no indicator that scripts where blocked which is probably the biggest usability issue. A click on the icon displays the scripts which options to allow, block or temporarily allow them individually.

If you run the blacklist mode (allow all scripts except selected ones) then you see a script listing similar to that on the screenshot above. The blue action is the current one for that script on that particular site. Just like with NoScript you can allow all scripts, globally allow all temporarily until revoked or temporarily allow the shown scripts.

NotScript seems to work considerably well. I have two big gripes with it. First the missing notification as it is a guess game if a script has been blocked or not and second that the developer has not updated the script in a while (the last update dates back to April 2011).

The extension itself works and that’s the most important aspect obviously. It is not a 100% port of NoScript but a port that brings the most important feature of the Firefox security extension to Opera. For that, it is highly recommended to be installed.

An alternative to that is the Opera NoScript Alternative BlockIt which I have reviewed in the linked article.

The second o-day security issue has received a critical severance rating as it can be used to crash the web browser and execute arbitrary code on the system.

Users running the latest stable version of the Opera web browser, which is 11.51 at the time of writing, should receive automatic updates right away.

It is alternatively possible to check for updates manually by clicking on Opera > Help > Check for Updates. The new version is also available for download at the official Opera website.

The new Opera version comes with stability enhancements as well. Opera 11.52 fixes a issue on YouTube where adjusting the volume on playing HTML5 videos could freeze the web browser. It furthermore fixes a issue where BitTorrent downloads would lead to a crash of the web browser.

It is likely that Opera 11.52 is the last 11.xx version of the browser. The development team has recently released Opera 12 alpha which showed improvements all over the board. The new version introduces new technology support. This includes support for WebGL and full hardware acceleration.

Tech enthusiasts interested in this development version of the browser can download it directly from the Opera desktop team blog.

The changelogs list numerous fixes for bugs that caused crashes in the web browser, including installer fixes and site specific issues that include fixes for popular sites such as Facebook or Vkontakte.

Users who dig deeper find several improvements as well. The team has for instance fixed various mouse gesture sensitivity and recognition issues or the option top open the Mail Panel as a tab when only feeds are used.

The full changelogs are linked from the blog post announcing the new release.

The security issues that have been fixed in Opera 11.01 are the following:

• Removed support for “javascript:” URLs in CSS -o-link values, to make it easier for sites to filter untrusted CSS.
• Fixed an issue where large form inputs could allow execution of arbitrary code.
• Fixed an issue which made it possible to carry out clickjacking attacks against internal opera: URLs;
• Fixed issues which allowed web pages to gain limited access to files on the user’s computer;
• Fixed an issue where email passwords were not immediately deleted when deleting private data;
• Fixed an issue which could cause the wrong executable to be used to display a downloaded file in its folder

Opera 11.01 is a recommended update for every Opera 11 user. It is possible to update the web browser directly by clicking on Help > Menu > Check for Updates.

The latest version of Opera can also be downloaded directly from Opera Software.

The release notes of the new Opera version list several changes since Opera 10.60, among them three security fixes that prevent the execution of arbitrary code, programs and the automatic subscription to news feeds in the preview feed view.

opera 10.61

Several additional fixes have been introduced to the display and scripting functionality of the browser. This includes Google Calendar compatibility, something that many Opera users have been waiting for. Other fixes in this category include fixing disk cache not working properly in turbo mode, proper handling of binary files (which have been handled as plain text files), widget changes so that they will all run and have network access after restarts, and blocking Opera Unite from listening on UDP port 1900 if UPnP service discovery has been set to off.

Finally, changes have been introduced to the Opera user interface as well, most notably a fix to prevent high CPU usage when loading animated png images in the browser, preventing Opera Windows from overwriting saved search preferences during installation and changing the default cookie behavior to accept all cookies.

User interface

Changed

* “Fraud Protection” renamed to “Fraud and Malware Protection”

Fixed

* Relative paths not working in the Filename setting for Speed Dial background
* Premature shutdown when using vBulletin’s WYSIWYG editor
* Loading an animated png causes high CPU usage with no response from the browser
* yahoo.cn mailproviders SMTP entry not using a submission port
* Changing the default cookie preference to “Accept all cookies”
* Installing Opera 10.60 windows overwrites saved search preferences

Display and Scripting

Fixed

* Google Calendar compatibility
* Unite listening on UDP 1900 even if UPnP service discovery is off
* Several cases where widgets will not run
* Premature shutdown when loading qq.com
* Setting the onload property of XMLHttpRequest blocks document memory from being garbage collected
* Opera treating binary files as plain text (opening it in the browser instead of showing a download dialog)
* Premature shutdown when loading the Canvas demo
* Printing from print preview results in either a freeze or corrupted page
* Widgets not having access to a network after restart
* “Accept cookies” and “only from the site I visit” settings being incorrect in Preferences dialog
* Premature shutdown occurring on startup of Opera under Windows 98
* Disk cache not working correctly in turbo mode

Security

Fixes

* Fixed an issue where heap buffer overflow in HTML5 canvas could be used to execute arbitrary code, as reported by Kuzzcc; see our advisory.
* Fixed an issue where unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven Krewitt of Secunia; see our advisory.
* Fixed an issue where news feed preview could subscribe to feeds without interaction, as reported by Alexios Fakos; see our advisory.

Opera 10.61 is already available for download at the Opera website. Opera 10.60 users can click on Menu > Help > Check for Updates to download and install the new version from within the web browser. Both downloads throw an error message currently. It is likely that this is only a temporary situation.

The announcement at the Opera Desktop Team blog does not go into detail, stating that Opera 10.54 is a “recommended security update” for Mac and Windows systems.

The change log for Windows lists the fixed security vulnerabilities, among them an extremely severe issue.

• Prevented Opera from being used as a vector for a font issue in the underlying operating system, as reported by Microsoft’s security team
• Fixed an extremely severe issue; details will be disclosed at a later date.
• Fixed a highly severe issue; details will be disclosed at a later date.
• Fixed a moderately severe issue; details will be disclosed at a later date.
• Fixed a less severe issue; details will be disclosed at a later date.

No details were disclosed at this time, most likely to give Opera users enough time to update their web browser to prevent exploitation of the issues.

Opera 10.x users can update the web browser by clicking on Menu > Help > Check for Updates in the web browser. Downloads are also available directly at the Opera website.

Opera 10.53 fixes three issues in total of which one is the reported security vulnerability. The two remaining fix a freeze of the web browser on Google Maps and and change the way the dialog.ini file is located and loaded in Opera.

Opera 10.53 is currently not available on the main Opera website nor by using the web browser’s update checker. The only way to grab it right away is to head over to the Opera ftp and download it from there.

An announcement of the update is expected to hit the Opera website within the next hours. This will also be the time when the update check in the web browser will pick up the new version so that it can be downloaded and installed directly. (via Caschy)

Opera 10.50 increased the performance of the web browser by a lot. The Opera browser is now one of the fastest web browsers available on the Internet and the developers promise that Opera 10.51 increases the speed further by up to 27% in the Peacekeeper benchmark compared to Opera 10.50.

The developers have published a post that details more speed and JavaScript improvements in Opera 10.51, for instance the fact that Opera 10.51 passes the Sputnik test of Google Labs better than any other web browser.

Opera 10.51 additionally fixes two security issues making it a recommended update for any Opera user.

Changes since Opera 10.50 (with Opera Widgets for Desktop)
User Interface
Fixed

* Drag and Drop not working in some instances
* Deleting a bookmark closing/collapsing all folders
* Focus being lost when deleting bookmarks
* Integrated search performing searches in Google and not in the page
* The Opera O menu button reappearing when the Menu bar is enabled
* The Opera icon remaining in the system tray after closing Opera
* Minimized tabs not displaying after a restart
* Favicon not being added to Bookmarks due to a question mark in the filename
* Individual characters in Chinese text being rotated anti-clockwise

Mail, News, Chat
Fixed

* A problem occurring when right-clicking entries under “All messages” and selecting Compose
* Chat notification appearing if a chat tab is active
* Ghost e-mails appearing in the Trash folder after emptying it and restarting Opera
* Message not loading when it is deselected and selected again
* Mail being blank when using fit to width
* Attached files not being sent if mail is sent immediately after attaching them
* Opera Mail welcome e-mail message not being localized
* The text part of HTML e-mails missing the reply character ” > ” for block quotes

Display and scripting
Improved

* Numerous improvements to the Carakan JavaScript engine

Fixed

* Icons missing from menus in 16-bit color mode
* Slow scrolling performance
* Incorrect font used for a UTF-8 encoded page without the language (CJK) being specified

Security
Fixed

* Fixed an issue where the HTTP Content-Length header could be used to execute arbitrary code; see our advisory (http://www.opera.com/support/search/view/948/).
* Fixed an issue where XSLT could be used to retrieve random contents of unrelated documents, as discovered by crazypops; see our advisory (http://www.opera.com/support/search/view/949/).

Network
Fixed

* Cookies:
o Cookies received over NPAPI being incorrectly parsed
o Reverted the blocking of third party cookies by default
o Opera sometimes storing a cookie for the domain it came from, rather than the set domain

The new Opera 10.51 can be downloaded directly from the Opera website.

The security company claims that that the vulnerability can be exploited by attackers to crash the browser and execute code on the computer system. Opera was contacted by The Register after the disclosure of the vulnerability.

According to information posted on The Register website a patch is already in the making. Opera is also not sure that the vulnerability can be exploited at all but confirmed that it can be used to crash the web browser. DEP, the Data Execution Prevention module, mitigates the problem said Opera spokesman Thomas Ford.

Opera users should make sure that DEP is enabled in their operating system. It is recommended to only access trustworthy websites until a patch is released or switch to another web browser in the meantime.

The new release appeared on Opera’s ftp server yesterday and has since then been moved to the homepage where the update can be seen and downloaded by everyone.

The security and stability update is available for all supported operating systems (Windows, Linux and Mac). Interested users can visit the changelogs for further release information. Opera 10.01 does not include Opera Unite which is still slated for a release in the final version of Opera 10.10.

Opera 10.01 is available at the Opera website and through the web browser’s auto-update functionality.

The security issues that are fixed in the latest version could be used to execute arbitrary code and allow cross domain scripting. Besides those fixes several additional updates have been implemented, many of which relate to certificates. This includes untrusted rootstore capabilities, preventing security information documents from being written to disk or fixing a problem that could cause the incorrect calculation of Certificate IDs.

This version of the Opera web browser added support for platform specific features, namely Data Execution Prevention in Windows XP and Windows Server 2003 and Address Space Layout Randomization in Windows Vista. There have also been several miscellaneous updates like fixing a problem with a blank inline search or adding an external source viewer to the Opera web browser.

Existing Opera users can alternatively use the Check For Updates option in the Help menu to download Opera 9.63. The only other changes are one addition to the opera:config menu which can be set to close tabs by double-clicking on them. There are also four additions to the mail, news and chat functions of Opera.

List of security changes and improvements:

• Manipulating text input contents can allow execution of arbitrary code
• HTML parsing flaw can cause Opera to execute arbitrary code
• Long hostnames in file: URLs can cause execution of arbitrary code
• Script injection in feed preview can reveal contents of unrelated news feeds
• Built-in XSLT templates can allow cross-site scripting
• Fixed an issue that could reveal random data
• SVG images embedded using tags can no longer execute Java or plugin content
• Opera now imports .p12 private certificates

The update is already available when checking the Help > Check For Updates option from within Opera. It can also be downloaded directly from the official Opera ftp website for all supported operating systems including Microsoft Windows, Apple Macintosh, Linux and mobile devices.

Here is the list of security issues that have been fixed in Opera 9.63:

• Manipulating text input contents can allow execution of arbitrary code
• HTML parsing flaw can cause Opera to execute arbitrary code
• Long hostnames in file: URLs can cause execution of arbitrary code
• Script injection in feed preview can reveal contents of unrelated news feeds
• Built-in XSLT templates can allow cross-site scripting
• Fixed an issue that could reveal random data
• SVG images embedded using tags can no longer execute Java or plugin content

Make sure to update the Opera web browser as soon as possible to eliminate the vulnerabilities.

The new version of Opera is a recommended security upgrade which fixes two security issues. The first fixes an issue where History Search could be used to execute arbitrary code while the second ensures that the links panel no longer allows cross-site scripting. The only other addition is the incorporation of the Opera Presto 2.1.1 user agent engine.

Opera users should upgrade the browser as soon as possible to secure the browser from those reported vulnerabilities.

A total of three security issues have been fixed in this version of Opera. The first issue fixed a security bug where the History Search function could be used to reveal browsing history. The second fix prevents Fast Forward from allowing Cross-Site scripting while the third prevents news feed previews from revealing contents of unrelated news feeds.

In addition to those three security fixes two user interface changes have been implemented in the latest version of Opera. The image toggle button on the status bar was changed to a normal button instead of a menu. Finally a issue with Opera Link was corrected which could generate duplicate bookmarks during synchronization.

The Opera changelogs can be accessed at the official Opera website. The download can be initiated from within Opera or by visiting the Opera website.

The Opera 9.52 changelog contains information about the security vulnerabilities. Each one of the listed alone would be serious enough to be fixed immediately, all of them make the matter even more pressing. At least one vulnerability is only affecting computers running Windows but most affect all versions of Opera.

The update is deemed a security and stability update. Next to the important security fixes many changes to various aspects of Opera have been made. The changelog lists more than 30 fixes for various problems that could arise while using Opera.

The latest download is available directly on the Opera website.

The release notes list four security fixes and several stability issues that have been fixed, most notably probably a stability issue with Yahoo Mail, menus on Deviantart and the TinyMCE editor.

Opera 9.51 is as usual available for all supported operating systems including Windows, Linux and Apple Mac. Users who already have the RC3 of Opera 9.51 installed do not need to upgrade because both versions, the RC3 and the final version of 9.51, are identical.