GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Sun Nov 19, 2017 8:26 pm Post subject: [ GLSA 201711-13 ] Adobe Flash Player |
|
|
Gentoo Linux Security Advisory
Title: Adobe Flash Player: Multiple vulnerabilities (GLSA 201711-13)
Severity: normal
Exploitable: remote
Date: 2017-11-19
Bug(s): #637630
ID: 201711-13
Synopsis
Multiple vulnerabilities have been found in Adobe Flash Player, the
worst of which allows remote attackers to execute arbitrary code.
Background
The Adobe Flash Player is a renderer for the SWF file format, which is
commonly used to provide interactive websites.
Affected Packages
Package: www-plugins/adobe-flash
Vulnerable: < 27.0.0.187
Unaffected: >= 27.0.0.187
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Adobe Flash Player.
Please review the referenced CVE identifiers and Adobe Security Bulletin
for details.
Impact
A remote attacker could possibly execute arbitrary code with the
privileges of the process.
Workaround
There is no known workaround at this time.
Resolution
All Adobe Flash Player users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=www-plugins/adobe-flash-27.0.0.187"
|
References
Adobe Security Bulletin
CVE-2017-11213
CVE-2017-11215
CVE-2017-11225
CVE-2017-3112
CVE-2017-3114
Last edited by GLSA on Mon Jan 15, 2018 4:17 am; edited 1 time in total |
|