Please read this before reporting a bug:
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#42769 - [flashplugin] APSB14-24 (17 CVE's): multiple flaws including privilege escalation, code execution
Attached to Project:
Arch Linux
Opened by Levente Polyak (anthraxx) - Thursday, 13 November 2014, 00:59 GMT
Last edited by Felix Yan (felixonmars) - Thursday, 13 November 2014, 04:32 GMT
Opened by Levente Polyak (anthraxx) - Thursday, 13 November 2014, 00:59 GMT
Last edited by Felix Yan (felixonmars) - Thursday, 13 November 2014, 04:32 GMT
|
DetailsSummary:
It has been reported [0] that flashplugin 11.2.202.411-1 is vulnerable to multiple highly critical issues (17 CVEs). Description: Multiple vulnerabilities were discovered in Adobe Flash Player including multiple code execution, privilege escalation and information leakage flaws. These vulnerabilities are detailed in the Adobe Security Bulletin APSB14-24 [0]. Mitigation: The problem has been fixed upstream in version 11.2.202.418. I highly advise to release an update as soon as possible. [0] https://helpx.adobe.com/security/products/flash-player/apsb14-24.html |
This task depends upon
Closed by Felix Yan (felixonmars)
Thursday, 13 November 2014, 04:32 GMT
Reason for closing: Fixed
Additional comments about closing: 11.2.202.418-1 pushed to [extra]
Thursday, 13 November 2014, 04:32 GMT
Reason for closing: Fixed
Additional comments about closing: 11.2.202.418-1 pushed to [extra]