Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 201309-06 ] Adobe Flash Player: Multiple vulnerabilities
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Veteran
Veteran


Joined: 12 May 2004
Posts: 1563

PostPosted: Sat Sep 14, 2013 2:26 am    Post subject: [ GLSA 201309-06 ] Adobe Flash Player: Multiple vulnerabilit Reply with quote

Gentoo Linux Security Advisory

Title: Adobe Flash Player: Multiple vulnerabilities (GLSA 201309-06)
Severity: normal
Exploitable: remote
Date: September 14, 2013
Bug(s): #437808, #442084, #446984, #452104, #456132, #457066, #459368, #461598, #465534, #469870, #473038, #476328, #484512
ID: 201309-06

Synopsis

Multiple vulnerabilities have been found in Adobe Flash Player, the
worst of which could result in execution of arbitrary code.


Background

The Adobe Flash Player is a renderer for the SWF file format, which is
commonly used to provide interactive websites.


Affected Packages

Package: www-plugins/adobe-flash
Vulnerable: < 11.2.202.310
Unaffected: >= 11.2.202.310
Architectures: All supported architectures


Description

Multiple unspecified vulnerabilities have been discovered in Adobe Flash
Player. Please review the CVE identifiers referenced below for details.


Impact

A remote attacker could entice a user to open specially crafted SWF
content, possibly resulting in execution of arbitrary code with the
privileges of the process or a Denial of Service condition. Furthermore,
a remote attacker may be able to bypass access restrictions.


Workaround

There is no known workaround at this time.

Resolution

All Adobe Flash Player users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-plugins/adobe-flash-11.2.202.310"
   


References

CVE-2012-5248
CVE-2012-5249
CVE-2012-5250
CVE-2012-5251
CVE-2012-5252
CVE-2012-5253
CVE-2012-5254
CVE-2012-5255
CVE-2012-5256
CVE-2012-5257
CVE-2012-5258
CVE-2012-5259
CVE-2012-5260
CVE-2012-5261
CVE-2012-5262
CVE-2012-5263
CVE-2012-5264
CVE-2012-5265
CVE-2012-5266
CVE-2012-5267
CVE-2012-5268
CVE-2012-5269
CVE-2012-5270
CVE-2012-5271
CVE-2012-5272
CVE-2012-5274
CVE-2012-5275
CVE-2012-5276
CVE-2012-5277
CVE-2012-5278
CVE-2012-5279
CVE-2012-5280
CVE-2012-5676
CVE-2012-5677
CVE-2012-5678
CVE-2013-0504
CVE-2013-0630
CVE-2013-0633
CVE-2013-0634
CVE-2013-0637
CVE-2013-0638
CVE-2013-0639
CVE-2013-0642
CVE-2013-0643
CVE-2013-0644
CVE-2013-0645
CVE-2013-0646
CVE-2013-0647
CVE-2013-0648
CVE-2013-0649
CVE-2013-0650
CVE-2013-1365
CVE-2013-1366
CVE-2013-1367
CVE-2013-1368
CVE-2013-1369
CVE-2013-1370
CVE-2013-1371
CVE-2013-1372
CVE-2013-1373
CVE-2013-1374
CVE-2013-1375
CVE-2013-1378
CVE-2013-1379
CVE-2013-1380
CVE-2013-2555
CVE-2013-2728
CVE-2013-3343
CVE-2013-3344
CVE-2013-3345
CVE-2013-3347
CVE-2013-3361
CVE-2013-3362
CVE-2013-3363
CVE-2013-5324


Last edited by GLSA on Sun Sep 15, 2013 4:31 am; edited 1 time in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum