Bugzilla – Bug 935701
VUL-0: CVE-2015-3113: flash-player: 11.2.202.468 release
Last modified: 2015-07-03 09:05:28 UTC
flash player 11.2.202.468 is being released today.
An update workflow for this issue was started. This issue was rated as moderate. Please submit fixed packages until 2015-07-07. When done, reassign the bug to security-team@suse.de. https://swamp.suse.de/webswamp/wf/62090
CVE-2015-3113 https://helpx.adobe.com/security/products/flash-player/apsb15-14.html Release date: June 23, 2015 Vulnerability identifier: APSB15-14 Priority: See table below CVE number: CVE-2015-3113 Platform: Windows, Macintosh and Linux Summary Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address a critical vulnerability (CVE-2015-3113) that could potentially allow an attacker to take control of the affected system. Adobe is aware of reports that CVE-2015-3113 is being actively exploited in the wild via limited, targeted attacks. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP, are known targets. ... These updates resolve a heap buffer overflow vulnerability that could lead to code execution (CVE-2015-3113).
openSUSE:Factory:NonFree: Result of change request state: ok"> <summary>Ok</summary> </status> openSUSE:Factory:NonFree (forwarded request 313305 from sbrabec) New request # 313306 openSUSE:Maintenance: Using target project 'openSUSE:Maintenance' 313307 SUSE:SLE-12:Update: Using target project 'SUSE:Maintenance' 60934 SUSE:SLE-11-SP1:Update:Test: created request id 60936 Report created by 6-flash-player-update-submit-all.sh.
(We either remember to also release this for SLED 11 SP4, or we just wait until the next round where it get included automatically. No action required.)
SUSE-SU-2015:1137-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 935701 CVE References: CVE-2015-3113 Sources used: SUSE Linux Enterprise Desktop 11 SP3 (src): flash-player-11.2.202.468-0.7.1
releasing for openSUSE
openSUSE-SU-2015:1148-1: An update that fixes one vulnerability is now available. Category: security (important) Bug References: 935701 CVE References: CVE-2015-3113 Sources used:
openSUSE-SU-2015:1180-1: An update that fixes one vulnerability is now available. Category: security (important) Bug References: 935701 CVE References: CVE-2015-3113 Sources used: