MGASA-2017-0075

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2017-0075.html
Import Source
https://advisories.mageia.org/MGASA-2017-0075.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2017-0075
Upstream
Published
2017-03-12T20:33:36Z
Modified
2026-04-16T06:23:13.883381234Z
Summary
Updated flash-player-plugin packages fix security vulnerability
Details

flash-player-plugin update fixes the following issues: * A type confusion vulnerability that could lead to code execution (CVE-2017-2995). * An integer overflow vulnerability that could lead to code execution (CVE-2017-2987). * Use-after-free vulnerabilities that could lead to code execution (CVE-2017-2982, CVE-2017-2985, CVE-2017-2993, CVE-2017-2994). * Heap buffer overflow vulnerabilities that could lead to code execution (CVE-2017- 2984, CVE-2017-2986, CVE-2017-2992). * Memory corruption vulnerabilities that could lead to code execution (CVE-2017-2988, CVE-2017-2990, CVE-2017-2991, CVE-2017-2996).

References
Credits

Affected packages

Mageia:5 / flash-player-plugin

Package

Name
flash-player-plugin
Purl
pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.0.221-1.mga5.nonfree

Ecosystem specific 

{
    "section": "nonfree"
}

Database specific

source 
"https://advisories.mageia.org/MGASA-2017-0075.json"