Adobe has released an update for the flash plugin that will fix the bug that came to light in the hackingteam incident. According to the advisory affected are "Adobe Flash Player 184.108.40.2068 and earlier 11.x versions for Linux".
The Download page has the newer version 220.127.116.111 for Linux systems. Please bump.
Thanks for the report, this is also discussed in
Arch teams, please test and mark stable:
Targeted stable KEYWORDS : amd64 x86
Stable for AMD64 x86.
Use-after-free vulnerability in the ByteArray class in the ActionScript 3
(AS3) implementation in Adobe Flash Player 13.x through 18.104.22.1686 and 14.x
through 22.214.171.124 on Windows and OS X and 11.x through 126.96.36.1998 on
Linux allows remote attackers to execute arbitrary code or cause a denial of
service (memory corruption) via crafted Flash content that overrides a
ValueOf function, as exploited in the wild in July 2015.
glsa request filed
This issue was resolved and addressed in
GLSA 201507-13 at https://security.gentoo.org/glsa/201507-13
by GLSA coordinator Kristian Fiskerstrand (K_F).