Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 551658 (CVE-2015-3096) - <www-plugins/adobe-flash-11.2.202.466 - multiple vulnerabilities (CVE-2015-{3096,3097,3098,3099,3100,3101,3102,3103,3104,3105,3106,3107,3108})
Summary: <www-plugins/adobe-flash-11.2.202.466 - multiple vulnerabilities (CVE-2015-{3...
Status: RESOLVED FIXED
Alias: CVE-2015-3096
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://helpx.adobe.com/security/prod...
Whiteboard: B2 [glsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2015-06-10 12:02 UTC by Jeroen Roovers (RETIRED)
Modified: 2015-07-21 01:28 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2015-06-10 12:02:37 UTC
Arch teams, please test and mark stable:
=www-plugins/adobe-flash-11.2.202.466
Targeted stable KEYWORDS : amd64 x86
Comment 1 Agostino Sarubbo gentoo-dev 2015-06-10 14:53:43 UTC
amd64 stable
Comment 2 Jeroen Roovers (RETIRED) gentoo-dev 2015-06-11 04:11:26 UTC
Stable for x86.
Comment 3 Yury German Gentoo Infrastructure gentoo-dev 2015-06-13 07:39:05 UTC
Arches and Maintainer(s), Thank you for your work.

Added to an existing GLSA Request.
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2015-06-13 07:41:28 UTC
CVE-2015-4472 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4472):
  Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5
  allows remote attackers to cause a denial of service (application crash) or
  possibly have unspecified other impact via a crafted CHM file.

CVE-2015-3108 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3108):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X do not properly restrict discovery of memory addresses, which allows
  attackers to bypass the ASLR protection mechanism via unspecified vectors.

CVE-2015-3107 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3107):
  Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and
  14.x through 18.x before 18.0.0.160 on Windows and OS X and before
  11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows
  and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X allows attackers to
  execute arbitrary code via unspecified vectors, a different vulnerability
  than CVE-2015-3103 and CVE-2015-3106.

CVE-2015-3106 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3106):
  Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and
  14.x through 18.x before 18.0.0.160 on Windows and OS X and before
  11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows
  and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X allows attackers to
  execute arbitrary code via unspecified vectors, a different vulnerability
  than CVE-2015-3103 and CVE-2015-3107.

CVE-2015-3105 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3105):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X allow attackers to execute arbitrary code or cause a denial of service
  (memory corruption) via unspecified vectors.

CVE-2015-3104 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3104):
  Integer overflow in Adobe Flash Player before 13.0.0.292 and 14.x through
  18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux,
  Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and
  Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on
  OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X allows attackers to execute arbitrary code via
  unspecified vectors.

CVE-2015-3103 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3103):
  Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and
  14.x through 18.x before 18.0.0.160 on Windows and OS X and before
  11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows
  and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X allows attackers to
  execute arbitrary code via unspecified vectors, a different vulnerability
  than CVE-2015-3106 and CVE-2015-3107.

CVE-2015-3102 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3102):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X allow remote attackers to bypass the Same Origin Policy via unspecified
  vectors, a different vulnerability than CVE-2015-3098 and CVE-2015-3099.

CVE-2015-3101 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3101):
  The Flash broker in Adobe Flash Player before 13.0.0.292 and 14.x through
  18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux,
  Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and
  Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on
  OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X, when Internet Explorer is used, allows attackers to
  perform a transition from Low Integrity to Medium Integrity via unspecified
  vectors.

CVE-2015-3100 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3100):
  Stack-based buffer overflow in Adobe Flash Player before 13.0.0.292 and 14.x
  through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466
  on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before
  18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on
  Windows and before 18.0.0.143 on OS X allows attackers to execute arbitrary
  code via unspecified vectors.

CVE-2015-3099 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3099):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X allow remote attackers to bypass the Same Origin Policy via unspecified
  vectors, a different vulnerability than CVE-2015-3098 and CVE-2015-3102.

CVE-2015-3098 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3098):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X allow remote attackers to bypass the Same Origin Policy via unspecified
  vectors, a different vulnerability than CVE-2015-3099 and CVE-2015-3102.

CVE-2015-3097 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3097):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before
  18.0.0.160, Adobe AIR before 18.0.0.144, Adobe AIR SDK before 18.0.0.144,
  and Adobe AIR SDK & Compiler before 18.0.0.144 on 64-bit Windows 7 systems
  do not properly select a random memory address for the Flash heap, which
  makes it easier for attackers to conduct unspecified attacks by predicting
  this address.

CVE-2015-3096 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3096):
  Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160
  on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before
  18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR
  SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe
  AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS
  X allow remote attackers to bypass a CVE-2014-5333 protection mechanism via
  unspecified vectors.
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2015-06-21 17:21:41 UTC
This issue was resolved and addressed in
 GLSA 201506-01 at https://security.gentoo.org/glsa/201506-01
by GLSA coordinator Kristian Fiskerstrand (K_F).
Comment 6 GLSAMaker/CVETool Bot gentoo-dev 2015-06-21 17:26:57 UTC
This issue was resolved and addressed in
 GLSA 201506-01 at https://security.gentoo.org/glsa/201506-01
by GLSA coordinator Kristian Fiskerstrand (K_F).