SUSE-SU-2016:2312-1
- Source
- https://www.suse.com/support/update/announcement/2016/suse-su-20162312-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:2312-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2016:2312-1
- Upstream
- Related
- Published
- 2016-09-15T08:40:57Z
- Modified
- 2026-02-04T04:20:31.742232Z
- Summary
- Security update for flash-player
- Details
-
This update for flash-player fixes the following security issues (APSB16-29, boo#998589):
- integer overflow vulnerability that could lead to code execution (CVE-2016-4287).
- use-after-free vulnerabilities that could lead to code execution (CVE-2016-4272, CVE-2016-4279, CVE-2016-6921, CVE-2016-6923, CVE-2016-6925, CVE-2016-6926, CVE-2016-6927, CVE-2016-6929, CVE-2016-6930, CVE-2016-6931, CVE-2016-6932)
- security bypass vulnerabilities that could lead to information disclosure (CVE-2016-4271, CVE-2016-4277, CVE-2016-4278)
- memory corruption vulnerabilities that could lead to code execution (CVE-2016-4182, CVE-2016-4237, CVE-2016-4238, CVE-2016-4274, CVE-2016-4275, CVE-2016-4276, CVE-2016-4280, CVE-2016-4281, CVE-2016-4282, CVE-2016-4283, CVE-2016-4284, CVE-2016-4285, CVE-2016-6922, CVE-2016-6924)
- References
-
- https://www.suse.com/support/update/announcement/2016/suse-su-20162312-1/
- https://bugzilla.suse.com/998589
- https://www.suse.com/security/cve/CVE-2016-4182
- https://www.suse.com/security/cve/CVE-2016-4237
- https://www.suse.com/security/cve/CVE-2016-4238
- https://www.suse.com/security/cve/CVE-2016-4271
- https://www.suse.com/security/cve/CVE-2016-4272
- https://www.suse.com/security/cve/CVE-2016-4274
- https://www.suse.com/security/cve/CVE-2016-4275
- https://www.suse.com/security/cve/CVE-2016-4276
- https://www.suse.com/security/cve/CVE-2016-4277
- https://www.suse.com/security/cve/CVE-2016-4278
- https://www.suse.com/security/cve/CVE-2016-4279
- https://www.suse.com/security/cve/CVE-2016-4280
- https://www.suse.com/security/cve/CVE-2016-4281
- https://www.suse.com/security/cve/CVE-2016-4282
- https://www.suse.com/security/cve/CVE-2016-4283
- https://www.suse.com/security/cve/CVE-2016-4284
- https://www.suse.com/security/cve/CVE-2016-4285
- https://www.suse.com/security/cve/CVE-2016-4287
- https://www.suse.com/security/cve/CVE-2016-6921
- https://www.suse.com/security/cve/CVE-2016-6922
- https://www.suse.com/security/cve/CVE-2016-6923
- https://www.suse.com/security/cve/CVE-2016-6924
- https://www.suse.com/security/cve/CVE-2016-6925
- https://www.suse.com/security/cve/CVE-2016-6926
- https://www.suse.com/security/cve/CVE-2016-6927
- https://www.suse.com/security/cve/CVE-2016-6929
- https://www.suse.com/security/cve/CVE-2016-6930
- https://www.suse.com/security/cve/CVE-2016-6931
- https://www.suse.com/security/cve/CVE-2016-6932
Affected packages
SUSE:Linux Enterprise Desktop 12 SP1 / flash-player
Package
- Name
- flash-player
- Purl
- pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed11.2.202.635-140.1
SUSE:Linux Enterprise Workstation Extension 12 SP1 / flash-player
Package
- Name
- flash-player
- Purl
- pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed11.2.202.635-140.1