CVE-2013-1618

Name of the Vulnerable Software and Affected Versions Opera versions prior to 12.13

Description The issue is related to the TLS implementation, which does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding. This allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets.

Recommendations For Opera versions prior to 12.13, update to version 12.13 or later to resolve the issue.