From Mageia wiki
Revision as of 10:16, 7 November 2012 by Tmb (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

MGASA-2012-0325

Date: November 7th, 2012
Affected releases: 1, 2


Description:
Adobe Flash Player 11.2.202.251 contains fixes to critical security
vulnerabilities found in earlier versions. These vulnerabilities could
cause a crash and potentially allow an attacker to take control of the
affected system.

This update resolves buffer overflow vulnerabilities that could lead to
code execution (CVE-2012-5274, CVE-2012-5275, CVE-2012-5276,
CVE-2012-5277, CVE-2012-5280).

This update resolves memory corruption vulnerabilities that could lead
to code execution (CVE-2012-5279).

This update resolves a security bypass vulnerability that could lead
to code execution (CVE-2012-5278).


Updated Packages:
Mageia 1:
flash-player-plugin-11.2.202.251-1.mga1
flash-player-plugin-kde-11.2.202.251-1.mga1

Mageia 2:
flash-player-plugin-11.2.202.251-1.mga2
flash-player-plugin-kde-11.2.202.251-1.mga2


References:
http://www.adobe.com/support/security/bulletins/apsb12-24.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5274
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5276
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5279
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5280
https://bugs.mageia.org/show_bug.cgi?id=8006