Advisories ยป MGASA-2014-0128

Updated flash-player-plugin packages fix security vulnerabilities

Publication date: 12 Mar 2014
Modification date: 12 Mar 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-0503 , CVE-2014-0504

Description

Adobe Flash Player 11.2.202.346 contains fixes to important vulnerabilities
found in earlier versions that could allow a remote attacker to bypass security
restrictions or to access sensitive information.

This update resolves a vulnerability that could be used to bypass the same 
origin policy (CVE-2014-0503).

This update resolves a vulnerability that could be used to read the contents
of the clipboard (CVE-2014-0504).
                

References

SRPMS

4/nonfree

3/nonfree