MGASA-2014-0521

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2014-0521.html

Import Source

https://advisories.mageia.org/MGASA-2014-0521.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2014-0521

Upstream

CVE-2014-0580

CVE-2014-0587

CVE-2014-8443

CVE-2014-9162

CVE-2014-9163

CVE-2014-9164

Published

2014-12-09T20:12:41Z

Modified

2026-04-16T06:23:32.335875152Z

Summary

Updated flash-player-plugin packages fix multiple security vulnerabilities

Details

Adobe Flash Player 11.2.202.425 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system.

This update resolves memory corruption vulnerabilities that could lead to code execution (CVE-2014-0587, CVE-2014-9164).

This update resolves a use-after-free vulnerability that could lead to code execution (CVE-2014-8443).

This update resolves a stack-based buffer overflow vulnerability that could lead to code execution (CVE-2014-9163).

This update resolves an information disclosure vulnerability (CVE-2014-9162).

This update resolves a vulnerability that could be exploited to circumvent the same-origin policy (CVE-2014-0580).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:4 / flash-player-plugin

Package

Name: flash-player-plugin
Purl: pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

11.2.202.425-1.mga4.nonfree

Ecosystem specific

{
    "section": "nonfree"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2014-0521.json"