Lucene search
SuseSUSE-SU-2016:3148-1HistoryDec 14, 2016 - 3:07 p.m.
Security update for flash-player (critical)
2016-12-1415:07:41
lists.opensuse.org
24
0.036 Low
EPSS
Percentile
91.8%
This update for flash-player fixes the following issues:
- Security update to 24.0.0.186 (bsc#1015379) APSB16-39:
- These updates resolve use-after-free vulnerabilities that could have
lead to code execution (CVE-2016-7872, CVE-2016-7877, CVE-2016-7878,
CVE-2016-7879, CVE-2016-7880, CVE-2016-7881, CVE-2016-7892). - These updates resolve buffer overflow vulnerabilities that could
have lead to code execution (CVE-2016-7867, CVE-2016-7868,
CVE-2016-7869, CVE-2016-7870). - These updates resolve memory corruption vulnerabilities that could
have lead to code execution (CVE-2016-7871, CVE-2016-7873,
CVE-2016-7874, CVE-2016-7875, CVE-2016-7876). - These updates resolve a security bypass vulnerability
(CVE-2016-7890).
- These updates resolve use-after-free vulnerabilities that could have
- Keep standalone flashplayer at version 11, no newer version exists
(INSECURE!). - Update EULA to version 24.0.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| SUSE Linux Enterprise Desktop | 12.1 | x86_64 | flash-player-gnome | < 24.0.0.186-152.1 | flash-player-gnome-24.0.0.186-152.1.x86_64.rpm |
| SUSE Linux Enterprise Desktop | 12.1 | x86_64 | flash-player | < 24.0.0.186-152.1 | flash-player-24.0.0.186-152.1.x86_64.rpm |
| SUSE Linux Enterprise Workstation Extension | 12.1 | x86_64 | flash-player | < 24.0.0.186-152.1 | flash-player-24.0.0.186-152.1.x86_64.rpm |
| SUSE Linux Enterprise Workstation Extension | 12.1 | x86_64 | flash-player-gnome | < 24.0.0.186-152.1 | flash-player-gnome-24.0.0.186-152.1.x86_64.rpm |
References
Related
nessus
nessus
MS16-154: Security Update for Adobe Flash Player (3209498)
2016-12-13 00:00:00
Adobe Flash Player <= 23.0.0.207 Multiple Vulnerabilities (APSB16-39)
2016-12-13 00:00:00
openSUSE Security Update : flash-player (openSUSE-2016-1484)
2016-12-16 00:00:00
openvas
openvas
Adobe Flash Player Security Update (APSB16-39) - Mac OS X
2016-12-14 00:00:00
Adobe Flash Player Security Update (APSB16-39) - Linux
2016-12-14 00:00:00
mscve
mscve
December 2016 Adobe Flash Security Update
2016-12-13 08:00:00
altlinux
altlinux
archlinux
archlinux
[ASA-201612-16] flashplugin: multiple issues
2016-12-15 00:00:00
[ASA-201612-17] lib32-flashplugin: multiple issues
2016-12-15 00:00:00
kaspersky
kaspersky
KLA10911 Multiple vulnerabilities in Adobe Flash Player
2016-12-14 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2017-01-10 00:00:00
redhat
redhat
(RHSA-2016:2947) Critical: flash-plugin security update
2016-12-14 12:51:12
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2017-01-13 13:32:16
threatpost
threatpost
Flash Player Bug An Eavesdropper's Delight
2016-12-14 12:21:25
Adobe Patches 31 Vulnerabilities, Flash Zero-Day Under Attack
2016-12-13 13:00:42
cve
cve
ubuntucve
ubuntucve
redhatcve
redhatcve
cvelist
cvelist
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB16-39: CVE-2016-7879)
2016-12-13 00:00:00
Adobe Flash Player Memory Corruption (APSB16-39: CVE-2016-7874)
2016-12-14 00:00:00
Adobe Flash Player Use After Free Code Execution (APSB16-39: CVE-2016-7892)
2016-12-13 00:00:00
nvd
nvd
zdi
zdi
prion
prion
Design/Logic Flaw
2016-12-15 06:59:00
Memory corruption
2016-12-15 06:59:00
Design/Logic Flaw
2016-12-15 06:59:00
attackerkb
attackerkb
CVE-2016-7892
2016-12-15 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Use-After-Free Vulnerability
2022-03-25 00:00:00