This update for flash-player to version 11.2.202.270,
tracked as ABSP13-05
<ttp://www.adobe.com/support/security/bulletins/apsb13-05.ht
ml> , contains fixes for the following security issues:
- Several buffer overflow vulnerabilities that could
lead to code execution. (CVE-2013-0642
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0642”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0642</a>
> , CVE-2013-0645
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0645”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0645</a>
> , CVE-2013-1365
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1365”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1365</a>
> , CVE-2013-1366
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1366”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1366</a>
> , CVE-2013-1367
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1367”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1367</a>
> , CVE-2013-1368
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1368”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1368</a>
> , CVE-2013-1369
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1369”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1369</a>
> , CVE-2013-1370
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1370”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1370</a>
> , CVE-2013-1372
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1372”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1372</a>
> , CVE-2013-1373
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1373”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1373</a>
> )
- Use-after-free vulnerabilities that could lead to
code execution. ( CVE-2013-0644
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0644”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0644</a>
> , CVE-2013-0649
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0649”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0649</a>
> , CVE-2013-1374
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1374”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1374</a>
> )
- An integer overflow vulnerability that could lead to
code execution. ( CVE-2013-0639
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0639”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0639</a>
> )
- Two memory corruption vulnerabilities that could lead
to code execution. (CVE-2013-0638
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0638”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0638</a>
> , CVE-2013-0647
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0647”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0647</a>
> )
- An information disclosure vulnerability.
(CVE-2013-0637
<<a href=“http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0637”>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0637</a>
> )