Users of Adobe Flash Player 11.2.202.236 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.238. See upstream advisory at $URL for more details
11.2.202.238 added to CVS.
Thank you, Tim. Arches, please test and mark stable: =www-plugins/adobe-flash-11.2.202.238 Target keywords : "amd64 x86"
x86 stable
amd64 stable
glsa request filed.
CVE-2012-1535 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1535): Unspecified vulnerability in Adobe Flash Player before 11.3.300.271 on Windows and Mac OS X and before 11.2.202.238 on Linux allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted SWF content, as exploited in the wild in August 2012 with SWF content in a Word document.
This issue was resolved and addressed in GLSA 201209-01 at http://security.gentoo.org/glsa/glsa-201209-01.xml by GLSA coordinator Sean Amoss (ackle).