Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 537378 (CVE-2015-0310) - <www-plugins/adobe-flash- - some vulnerability (CVE-2015-0310)
Summary: <www-plugins/adobe-flash- - some vulnerability (CVE-2015-0310)
Alias: CVE-2015-0310
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
Whiteboard: A3 [glsa cleanup]
Depends on:
Reported: 2015-01-22 18:17 UTC by Jeroen Roovers (RETIRED)
Modified: 2015-02-06 19:28 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2015-01-22 18:17:57 UTC
Arch teams, please test and mark stable:
Targeted stable KEYWORDS : amd64 x86
Comment 1 Agostino Sarubbo gentoo-dev 2015-01-23 07:53:31 UTC
amd64 stable
Comment 2 Agostino Sarubbo gentoo-dev 2015-01-23 07:53:45 UTC
x86 stable.

Maintainer(s), please cleanup.
Comment 3 Kristian Fiskerstrand (RETIRED) gentoo-dev 2015-02-06 14:18:22 UTC
Added to existing GLSA draft
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2015-02-06 14:20:06 UTC
CVE-2015-0310 (
  Adobe Flash Player before and 14.x through 16.x before
  on Windows and OS X and before on Linux does not properly
  restrict discovery of memory addresses, which allows attackers to bypass the
  ASLR protection mechanism on Windows, and have an unspecified impact on
  other platforms, via unknown vectors, as exploited in the wild in January
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2015-02-06 19:28:37 UTC
This issue was resolved and addressed in
 GLSA 201502-02 at
by GLSA coordinator Mikle Kolyada (Zlogene).