flashplugin: remote code execution

2015-02-06T00:00:00
ID ASA-201502-2
Type archlinux
Reporter Arch Linux
Modified 2015-02-06T00:00:00

Description

  • CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322

Use-after-free vulnerabilities leading to arbitrary code execution.

  • (CVE-2015-0314, CVE-2015-0316, CVE-2015-0318, CVE-2015-0321, CVE-2015-0329, CVE-2015-0330

Memory corruption vulnerabilities leading to arbitrary code execution.

  • CVE-2015-0317, CVE-2015-0319

Type confusion vulnerabilities leading to arbitrary code execution.

  • CVE-2015-0323, CVE-2015-0327

Heap overflow vulnerabilities leading to arbitrary code execution.

  • CVE-2015-0324

Buffer overflow vulnerability leading to arbitrary code execution.

  • CVE-2015-0325, CVE-2015-0326, CVE-2015-0328

Null-pointer dereference issues, possibly leading to denial of service or other unspecified impact.