Adobe has released security updates for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. These updates address critical vulnerabilities in Adobe Flash Player 18.104.22.168 and earlier versions. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Adobe is aware of a report that an exploit for CVE-2018-5002 exists in the wild, and is being used in limited, targeted attacks against Windows users. These attacks leverage Office documents with embedded malicious Flash Player content distributed via email.
@ Maintainer(s): Please bump package to >=www-plugins/adobe-flash-22.214.171.124!
New GLSA request filed.
This issue was resolved and addressed in
GLSA 201806-02 at https://security.gentoo.org/glsa/201806-02
by GLSA coordinator Aaron Bauman (b-man).