Advisories ยป MGASA-2018-0349

Updated flash-player-plugin packages fix security vulnerabilities

Publication date: 19 Aug 2018
Modification date: 19 Aug 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-12824 , CVE-2018-12825 , CVE-2018-12826 , CVE-2018-12827 , CVE-2018-12828

Description

Updated flash-player-plugin packages fix security vulnerabilities:
* Out-of-bounds read that can lead to Information Disclosure 
  (CVE-2018-12824, CVE-2018-12826, CVE-2018-12827)
* Security bypass that can lead to Security Mitigation Bypass
  (CVE-2018-12825)
* Use of a component with a known vulnerability can lead to a
  Privilege Escalation (CVE-2018-12828)
                

References

SRPMS

6/nonfree