Updated flash-player-plugin packages fixes security vulnerabilities
Publication date: 16 Nov 2017Modification date: 16 Nov 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-3112 , CVE-2017-3114 , CVE-2017-11213 , CVE-2017-11215 , CVE-2017-11225
Description
Adobe Flash Player 27.0.0.187 addresses critical vulnerabilities that could lead to code execution. The update fixes out-of-bounds reads (CVE-2017-3112, CVE-2017-3114, CVE-2017-11213) and use-after-free issues (CVE-2017-11215, CVE-2017-11225).
References
- https://bugs.mageia.org/show_bug.cgi?id=22023
- https://helpx.adobe.com/security/products/flash-player/apsb17-33.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3112
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3114
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11213
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11215
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11225
SRPMS
6/nonfree
- flash-player-plugin-27.0.0.187-1.mga6.nonfree
5/nonfree
- flash-player-plugin-27.0.0.187-1.mga5.nonfree