Adobe has released an update for the flash plugin that will fix the bug that came to light in the hackingteam incident. According to the advisory affected are "Adobe Flash Player 22.214.171.1248 and earlier 11.x versions for Linux".
The Download page has the newer version 126.96.36.1991 for Linux systems. Please bump.
Thanks for the report, this is also discussed in
Arch teams, please test and mark stable:
Targeted stable KEYWORDS : amd64 x86
Stable for AMD64 x86.
Use-after-free vulnerability in the ByteArray class in the ActionScript 3
(AS3) implementation in Adobe Flash Player 13.x through 188.8.131.526 and 14.x
through 184.108.40.206 on Windows and OS X and 11.x through 220.127.116.118 on
Linux allows remote attackers to execute arbitrary code or cause a denial of
service (memory corruption) via crafted Flash content that overrides a
ValueOf function, as exploited in the wild in July 2015.
glsa request filed
This issue was resolved and addressed in
GLSA 201507-13 at https://security.gentoo.org/glsa/201507-13
by GLSA coordinator Kristian Fiskerstrand (K_F).