I found this on some german internet page (see link above). the new player is already available for download at http://download.macromedia.com/pub/shockwave/flash/english/linux/6.0r79/install_flash_player_6_linux.tar.gz Reproducible: Always Steps to Reproduce: 1. 2. 3.
This bug should be flagged SECURITY and have Severity critical (I am not allowed to do this). The bug can be exploited by any website to get the full rights of the visiting user on the visiting computer. Macromedia Security Bulletin in English: http://www.macromedia.com/v1/handlers/index.cfm?ID=23821
Created attachment 9015 [details] The ebuild Yes, I know this is sick...
That is bad news, especially since the filename is the same as for the buggy version. How to get this into portage? My following suggestion: Don't set SRC_URI to avoid portage complaining about file digests. Do the MD5 check and downloading manually. Ebuild attached, works fine for me.
Created attachment 9017 [details] Second try Some cosmetics.
glsa sent
