Summary: | <www-plugins/adobe-flash-11.2.202.616 Arbitrary code execution vulnerability (CVE-2016-1019) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Kristian Fiskerstrand (RETIRED) <k_f> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | ftobin, jer, phmagic |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://helpx.adobe.com/security/products/flash-player/apsa16-01.html | ||
Whiteboard: | A2 [glsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Kristian Fiskerstrand (RETIRED)
2016-04-06 14:27:34 UTC
Adobe Flash Player 11.2.202.577 is available: https://helpx.adobe.com/security/products/flash-player/apsb16-10.html Arch teams, please test and mark stable: =www-plugins/adobe-flash-11.2.202.616 Targeted stable KEYWORDS : amd64 x86 amd64 stable x86 stable. Maintainer(s), please cleanup. Added to existing GLSA. CVE-2016-1019 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1019): Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016. This issue was resolved and addressed in GLSA 201606-08 at https://security.gentoo.org/glsa/201606-08 by GLSA coordinator Kristian Fiskerstrand (K_F). |