GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Wed Apr 11, 2018 8:26 pm Post subject: [ GLSA 201804-11 ] Adobe Flash Player |
|
|
Gentoo Linux Security Advisory
Title: Adobe Flash Player: Multiple vulnerabilities (GLSA 201804-11)
Severity: high
Exploitable: remote
Date: 2018-04-11
Bug(s): #652960
ID: 201804-11
Synopsis
Multiple vulnerabilities have been found in Adobe Flash Player, the
worst of which allows remote attackers to execute arbitrary code.
Background
The Adobe Flash Player is a renderer for the SWF file format, which is
commonly used to provide interactive websites.
Affected Packages
Package: www-plugins/adobe-flash
Vulnerable: < 29.0.0.140
Unaffected: >= 29.0.0.140
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Adobe Flash Player.
Please review the CVE identifiers referenced below for details.
Impact
A remote attacker could possibly execute arbitrary code with the
privileges of the process, disclose sensitive information or bypass
security restrictions.
Workaround
There is no known workaround at this time.
Resolution
All Adobe Flash users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=www-plugins/adobe-flash-29.0.0.140"
|
References
APSB18-08
CVE-2018-4932
CVE-2018-4933
CVE-2018-4934
CVE-2018-4935
CVE-2018-4936
CVE-2018-4937 |
|