Adobe has released an update for the flash plugin that will fix the bug that came to light in the hackingteam incident. According to the advisory affected are "Adobe Flash Player 126.96.36.1998 and earlier 11.x versions for Linux".
The Download page has the newer version 188.8.131.521 for Linux systems. Please bump.
Thanks for the report, this is also discussed in
Arch teams, please test and mark stable:
Targeted stable KEYWORDS : amd64 x86
Stable for AMD64 x86.
Use-after-free vulnerability in the ByteArray class in the ActionScript 3
(AS3) implementation in Adobe Flash Player 13.x through 184.108.40.2066 and 14.x
through 220.127.116.11 on Windows and OS X and 11.x through 18.104.22.1688 on
Linux allows remote attackers to execute arbitrary code or cause a denial of
service (memory corruption) via crafted Flash content that overrides a
ValueOf function, as exploited in the wild in July 2015.
glsa request filed
This issue was resolved and addressed in
GLSA 201507-13 at https://security.gentoo.org/glsa/201507-13
by GLSA coordinator Kristian Fiskerstrand (K_F).