14 matches found
Mageia: Security Advisory (MGASA-2015-0043)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Internet Bug Bounty: Race condition in workers may cause an exploitable double free by abusing bytearray.compress()
The issue occurs while sharing a bytearray between two workers. If one worker calls bytearray.compress while the other uses that bytearray, Flash does not correctly handle the race and may double free the array. Identified as CVE-2015-0312, and reported to Adobe via Chrome VRP:...
Adobe Flash Player Double Free (APSB15-03: CVE-2015-0312)
A double free memory vulnerability has been reported in Adobe Flash Player. The issue occurs while sharing a bytearray between two workers. If one worker calls bytearray.compress while the other uses that bytearray, the code does not handle the race correctly and leads to double free, which can...
CVE-2015-0312
Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors...
UBUNTU-CVE-2015-0312
Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors...
CVE-2015-0312
Adobe Flash Player contains a double-free vulnerability (CVE-2015-0312) reported to occur when sharing a bytearray between two workers, where one worker calls bytearray.compress() and another uses the same object. The issue can lead to arbitrary code execution and is associated with Adobe’s APSB1...
RHEL 5 / 6 : flash-plugin (RHSA-2015:0094)
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...
Critical: Red Hat Security Advisory: flash-plugin security update
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...
Updated flash-player-plugin packages fix security vulnerabilities
Adobe Flash Player 11.2.202.440 contains fixes to critical security vulnerabilities found in earlier versions that could cause a crash and potentially allow an attacker to take control of the affected system. Adobe reports that CVE-2015-0311 is already being actively exploited in the wild via...
Adobe Flash Player CVE-2015-0312 Double Free Remote Code Execution Vulnerability
Description Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition...
Google Chrome < 40.0.2214.93 Flash Player Multiple Remote Code Execution
The version of Google Chrome installed on the remote Windows host is prior to 40.0.2214.93. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code. CVE-2015-0311 - A double-free error...
Adobe Flash Player Unspecified Code Execution Vulnerability (Jan 2015) - Linux
Adobe Flash Player is prone to unspecified arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Flash Player For Mac <= 16.0.0.287 Unspecified Code Execution (APSA15-01)
According to its version, the Adobe Flash Player installed on the remote Mac OS X host is equal or prior to 16.0.0.287. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code...
Flash Player <= 16.0.0.287 Unspecified Code Execution (APSA15-01 / APSB15-03)
According to its version, the Adobe Flash Player installed on the remote Windows host is equal or prior to 16.0.0.287. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code...