Updated flash-player-plugin packages fix security vulnerabilities
Publication date: 26 Aug 2017Modification date: 26 Aug 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-3085 , CVE-2017-3106
Description
This update upgrades Flash Player to version 26.0.0.151. Security Fix(es): * This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2017-3085, CVE-2017-3106)
References
SRPMS
5/nonfree
- flash-player-plugin-26.0.0.151-1.1.mga5.nonfree
6/nonfree
- flash-player-plugin-26.0.0.151-1.1.mga6.nonfree