Security update for flash-player
SUSE Patch
security@suse.de
SUSE Security Team
openSUSE-SU-2016:2665-1
Final
1
1
2016-10-27T19:49:55Z
current
2016-10-27T19:49:55Z
2016-10-27T19:49:55Z
cve-database/bin/generate-cvrf.pl
2017-02-24T01:00:00Z
Security update for flash-player
This update for Adobe Flash Player to 11.2.202.643 fixes the following vulnerability:
- CVE-2016-7855: use-after-free vulnerability (APSB16-36, boo#1007098)
The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0)
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00070.html
E-Mail link for openSUSE-SU-2016:2665-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
openSUSE 13.1 NonFree
flash-player-11.2.202.643-177.1
flash-player-gnome-11.2.202.643-177.1
flash-player-kde4-11.2.202.643-177.1
flash-player-11.2.202.643-177.1 as a component of openSUSE 13.1 NonFree
flash-player-gnome-11.2.202.643-177.1 as a component of openSUSE 13.1 NonFree
flash-player-kde4-11.2.202.643-177.1 as a component of openSUSE 13.1 NonFree
Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
CVE-2016-7855
openSUSE 13.1 NonFree:flash-player-11.2.202.643-177.1
openSUSE 13.1 NonFree:flash-player-gnome-11.2.202.643-177.1
openSUSE 13.1 NonFree:flash-player-kde4-11.2.202.643-177.1
important
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Please Install the update.
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00070.html
https://www.suse.com/security/cve/CVE-2016-7855.html
CVE-2016-7855
https://bugzilla.suse.com/1007098
SUSE Bug 1007098