Adobe has released an update for the flash plugin that will fix the bug that came to light in the hackingteam incident. According to the advisory affected are "Adobe Flash Player 220.127.116.118 and earlier 11.x versions for Linux".
The Download page has the newer version 18.104.22.1681 for Linux systems. Please bump.
Thanks for the report, this is also discussed in
Arch teams, please test and mark stable:
Targeted stable KEYWORDS : amd64 x86
Stable for AMD64 x86.
Use-after-free vulnerability in the ByteArray class in the ActionScript 3
(AS3) implementation in Adobe Flash Player 13.x through 22.214.171.1246 and 14.x
through 126.96.36.199 on Windows and OS X and 11.x through 188.8.131.528 on
Linux allows remote attackers to execute arbitrary code or cause a denial of
service (memory corruption) via crafted Flash content that overrides a
ValueOf function, as exploited in the wild in July 2015.
glsa request filed
This issue was resolved and addressed in
GLSA 201507-13 at https://security.gentoo.org/glsa/201507-13
by GLSA coordinator Kristian Fiskerstrand (K_F).