Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 537378 (CVE-2015-0310) - <www-plugins/adobe-flash-11.2.202.438 - some vulnerability (CVE-2015-0310)
Summary: <www-plugins/adobe-flash-11.2.202.438 - some vulnerability (CVE-2015-0310)
Status: RESOLVED FIXED
Alias: CVE-2015-0310
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://helpx.adobe.com/security/produ...
Whiteboard: A3 [glsa cleanup]
Keywords:
Depends on:
Blocks:
 
Reported: 2015-01-22 18:17 UTC by Jeroen Roovers (RETIRED)
Modified: 2015-02-06 19:28 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2015-01-22 18:17:57 UTC
Arch teams, please test and mark stable:
=www-plugins/adobe-flash-11.2.202.438
Targeted stable KEYWORDS : amd64 x86
Comment 1 Agostino Sarubbo gentoo-dev 2015-01-23 07:53:31 UTC
amd64 stable
Comment 2 Agostino Sarubbo gentoo-dev 2015-01-23 07:53:45 UTC
x86 stable.

Maintainer(s), please cleanup.
Comment 3 Kristian Fiskerstrand (RETIRED) gentoo-dev 2015-02-06 14:18:22 UTC
Added to existing GLSA draft
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2015-02-06 14:20:06 UTC
CVE-2015-0310 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0310):
  Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287
  on Windows and OS X and before 11.2.202.438 on Linux does not properly
  restrict discovery of memory addresses, which allows attackers to bypass the
  ASLR protection mechanism on Windows, and have an unspecified impact on
  other platforms, via unknown vectors, as exploited in the wild in January
  2015.
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2015-02-06 19:28:37 UTC
This issue was resolved and addressed in
 GLSA 201502-02 at http://security.gentoo.org/glsa/glsa-201502-02.xml
by GLSA coordinator Mikle Kolyada (Zlogene).