Following issues was resolved in this update:
*an improper file validation issue CVE-2015-0301),
*an information disclosure vulnerability that could be exploited to
capture keystrokes on the affected system (CVE-2015-0302),
*memory corruption vulnerabilities that could lead to code execution
(CVE-2015-0303, CVE-2015-0306),
*heap-based buffer overflow vulnerabilities that could lead to code
execution (CVE-2015-0304,CVE-2015-0309),
*type confusion vulnerability that could lead to code execution
(CVE-2015-0305),
*an out-of-bounds read vulnerability that could be exploited to leak
memory addresses (CVE-2015-0307),
*a use-after-free vulnerability that could lead to code execution
(CVE-2015-0308).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE Evergreen | 11.4 | i586 | flash-player-gnome | < 11.2.202.429-139.1 | flash-player-gnome-11.2.202.429-139.1.i586.rpm |
openSUSE Evergreen | 11.4 | x86_64 | flash-player | < 11.2.202.429-139.1 | flash-player-11.2.202.429-139.1.x86_64.rpm |
openSUSE Evergreen | 11.4 | x86_64 | flash-player-gnome | < 11.2.202.429-139.1 | flash-player-gnome-11.2.202.429-139.1.x86_64.rpm |
openSUSE Evergreen | 11.4 | i586 | flash-player | < 11.2.202.429-139.1 | flash-player-11.2.202.429-139.1.i586.rpm |
openSUSE Evergreen | 11.4 | x86_64 | flash-player-kde4 | < 11.2.202.429-139.1 | flash-player-kde4-11.2.202.429-139.1.x86_64.rpm |
openSUSE Evergreen | 11.4 | i586 | flash-player-kde4 | < 11.2.202.429-139.1 | flash-player-kde4-11.2.202.429-139.1.i586.rpm |