MGASA-2015-0404

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2015-0404.html

Import Source

https://advisories.mageia.org/MGASA-2015-0404.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2015-0404

Upstream

CVE-2015-7645

CVE-2015-7647

CVE-2015-7648

Published

2015-10-17T08:53:25Z

Modified

2026-04-16T06:25:11.829259021Z

Summary

Updated flash-player-plugin package fix security vulnerabilities

Details

Adobe Flash Player 11.2.202.540 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system.

This update resolves type confusion vulnerabilities that could lead to code execution (CVE-2015-7645, CVE-2015-7647, CVE-2015-7648).

An exploit for CVE-2015-7645 is being used in the wild.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / flash-player-plugin

Package

Name: flash-player-plugin
Purl: pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

11.2.202.540-1.mga5.nonfree

Ecosystem specific

{
    "section": "nonfree"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0404.json"