MGASA-2016-0315

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2016-0315.html
Import Source
https://advisories.mageia.org/MGASA-2016-0315.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2016-0315
Upstream
Published
2016-09-21T20:38:22Z
Modified
2026-04-16T06:22:56.667367251Z
Summary
Updated flash-player-plugin packages fix security vulnerability
Details

Adobe Flash Player 11.2.202.635 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system.

This update resolves an integer overflow vulnerability that could lead to code execution (CVE-2016-4287).

This update resolves use-after-free vulnerabilities that could lead to code execution (CVE-2016-4272, CVE-2016-4279, CVE-2016-6921, CVE-2016-6923, CVE-2016-6925, CVE-2016-6926, CVE-2016-6927, CVE-2016-6929, CVE-2016-6930, CVE-2016-6931, CVE-2016-6932).

This update resolves security bypass vulnerabilities that could lead to information disclosure (CVE-2016-4271, CVE-2016-4277, CVE-2016-4278).

This update resolves memory corruption vulnerabilities that could lead to code execution (CVE-2016-4274, CVE-2016-4275, CVE-2016-4276, CVE-2016-4280, CVE-2016-4281, CVE-2016-4282, CVE-2016-4283, CVE-2016-4284, CVE-2016-4285, CVE-2016-6922, CVE-2016-6924).

References
Credits

Affected packages

Mageia:5 / flash-player-plugin

Package

Name
flash-player-plugin
Purl
pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.2.202.635-1.mga5.nonfree

Ecosystem specific 

{
    "section": "nonfree"
}

Database specific

source 
"https://advisories.mageia.org/MGASA-2016-0315.json"