From 8d99556d0be392f4b549aa6ccfe8c1a5d243f7a0 Mon Sep 17 00:00:00 2001 From: Koop Mast Date: Tue, 29 Dec 2015 18:55:02 +0000 Subject: Document latest flash vulnabilities. Security: CVE-2015-8459, CVE-2015-8460, CVE-2015-8634, CVE-2015-8635, CVE-2015-8636, CVE-2015-8638, CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, CVE-2015-8642, CVE-2015-8643, CVE-2015-8644, CVE-2015-8645, CVE-2015-8646, CVE-2015-8647, CVE-2015-8648, CVE-2015-8649, CVE-2015-8650, CVE-2015-8651 --- security/vuxml/vuln.xml | 59 +++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 59 insertions(+) (limited to 'security') diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 52d5dc2d9f29..03af6265aee3 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -58,6 +58,65 @@ Notes: --> + + flash -- multiple vulnabilities + + + linux-c6-flashplugin + linux-f10-flashplugin + linux-c6_64-flashplugin + 11.2r202.559 + + + + +

Adobe reports:

+
+

These updates resolve a type confusion vulnerability that + could lead to code execution (CVE-2015-8644).

+ +

These updates resolve an integer overflow vulnerability + that could lead to code execution (CVE-2015-8651).

+ +

These updates resolve use-after-free vulnerabilities that + could lead to code execution (CVE-2015-8634, CVE-2015-8635, + CVE-2015-8638, CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, + CVE-2015-8642, CVE-2015-8643, CVE-2015-8646, CVE-2015-8647, + CVE-2015-8648, CVE-2015-8649, CVE-2015-8650).

+ +

These updates resolve memory corruption vulnerabilities + that could lead to code execution (CVE-2015-8459, + CVE-2015-8460, CVE-2015-8636, CVE-2015-8645).

+
+ + + + CVE-2015-8459 + CVE-2015-8460 + CVE-2015-8634 + CVE-2015-8636 + CVE-2015-8638 + CVE-2015-8639 + CVE-2015-8640 + CVE-2015-8641 + CVE-2015-8642 + CVE-2015-8643 + CVE-2015-8644 + CVE-2015-8645 + CVE-2015-8646 + CVE-2015-8647 + CVE-2015-8648 + CVE-2015-8649 + CVE-2015-8650 + CVE-2015-8651 + https://helpx.adobe.com/security/products/flash-player/apsb16-01.html + + + 2015-12-28 + 2015-12-29 + + + inspircd -- DoS -- cgit v1.2.3