Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 570040 (CVE-2015-8651)

Summary: <www-plugins/adobe-flash-11.2.202.559: Multiple vulnerabilities (CVE-2015-{8459,8460,8634,8635,8636,8638,8639,8640,8641,8642,8643,8644,8645,8646,8647,8648,8649,8650,8651})
Product: Gentoo Security Reporter: Kristian Fiskerstrand (RETIRED) <k_f>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: jer
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://helpx.adobe.com/security/products/flash-player/apsb16-01.html
Whiteboard: A2 [glsa cve]
Package list:
Runtime testing required: ---

Description Kristian Fiskerstrand (RETIRED) gentoo-dev 2015-12-28 22:21:18 UTC 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Adobe Security Bulletins:

APSB16-01: Security updates available for Adobe Flash Player

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

APSB16-01: Security updates available for Adobe Flash Player

Originally posted: December 28, 2015

Summary:
Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. 

Adobe is aware of a report that an exploit for CVE-2015-8651 is being used in limited, targeted attacks, and recommends users update their product installations using the instructions provided in the Solution section of the security bulletin.  

Learn more: http://t.info.adobesystems.com//r/?id=tafea88d8,30f1004b,3151ba72

Priority and Severity Ratings: 

Adobe categorizes these updates as priority 1, addressing critical vulnerabilities:

http://t.info.adobesystems.com//r/?id=tafea88d8,30f1004b,3151ba73
##

Adobe recommends users of Adobe Flash Player for Linux update to Adobe Flash Player 11.2.202.559 by visiting the Adobe Flash Player Download Center.
Comment 1 Jeroen Roovers (RETIRED) gentoo-dev 2015-12-29 06:34:07 UTC 
Arch teams, please test and mark stable:
=www-plugins/adobe-flash-11.2.202.559
Targeted stable KEYWORDS : amd64 x86
Comment 2 Agostino Sarubbo gentoo-dev 2015-12-29 09:17:21 UTC 
amd64 stable
Comment 3 Agostino Sarubbo gentoo-dev 2015-12-29 09:17:45 UTC 
x86 stable.

Maintainer(s), please cleanup.
Security, please add it to the existing request, or file a new one.
Comment 4 Yury German Gentoo Infrastructure gentoo-dev 2015-12-31 00:48:25 UTC 
Arches and Maintainer(s), Thank you for your work.
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2016-01-26 20:21:31 UTC 
This issue was resolved and addressed in
 GLSA 201601-03 at https://security.gentoo.org/glsa/201601-03
by GLSA coordinator Kristian Fiskerstrand (K_F).