Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 624620 (APSB17-21, CVE-2017-3080, CVE-2017-3099, CVE-2017-3100)

Summary: <www-plugins/adobe-flash- multiple vulnerabilities
Product: Gentoo Security Reporter: GLSAMaker/CVETool Bot <glsamaker>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: major CC: desktop-misc, gentoo, jer
Priority: Normal Flags: stable-bot: sanity-check+
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: A2 [glsa cve]
Package list:
Runtime testing required: ---

Description GLSAMaker/CVETool Bot gentoo-dev 2017-07-11 20:09:20 UTC
Incoming details.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2017-07-11 20:15:35 UTC
Security updates available for Flash Player | APSB17-21

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.  

Affected product versions
========================= and earlier

Vulnerability details
Category 	        Vulnerability Impact 	  Severity   CVE Numbers
Security Bypass 	Information Disclosure    Important  CVE-2017-3080
Memory Corruption 	Remote Code Execution     Critical   CVE-2017-3099
Memory Corruption 	Memory address disclosure Important  CVE-2017-3100

@ Maintainer(s): Please bump to >=www-plugins/adobe-flash-!
Comment 2 Thomas Deutschmann (RETIRED) gentoo-dev 2017-07-16 20:31:41 UTC
Bumped via

@ Arches,

please test and mark stable: =www-plugins/adobe-flash-
Comment 3 Tobias Klausmann (RETIRED) gentoo-dev 2017-07-19 17:24:29 UTC
Stable on amd64.
Comment 4 Jeroen Roovers (RETIRED) gentoo-dev 2017-07-20 06:50:13 UTC
*** Bug 625256 has been marked as a duplicate of this bug. ***
Comment 5 Thomas Deutschmann (RETIRED) gentoo-dev 2017-07-21 23:08:26 UTC
Added to an existing GLSA.
Comment 6 GLSAMaker/CVETool Bot gentoo-dev 2017-07-21 23:19:32 UTC
This issue was resolved and addressed in
 GLSA 201707-15 at
by GLSA coordinator Thomas Deutschmann (whissi).