Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

openSUSE: 2011:0897-1 Critical: Flash Player Buffer Overflow

opensuse
Calendar Grey August 12, 2011
Dist Opensuse Esm H88
Important security patch released for openSUSE tackling several vulnerabilities in Flash Player through an upgrade to the latest version.
An update that fixes 13 vulnerabilities is now available

Description

The update to Flash-Player 10.3.188.5 fixes various

security issues:

- CVE-2011-2130: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2134: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2135: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2136: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2137: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2138: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2139: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2140: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2414: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2415: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2416: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

- CVE-2011-2417: CVSS v2 Base Score: 6.8

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

-...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory buffer overflow critical memory corruption integer overflow openSUSE flash player

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch flash-player-4976

- openSUSE 11.3:

zypper in -t patch flash-player-4976

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 11.4 (i586) [New Version: 10.3.183.5]:

flash-player-10.3.183.5-0.2.1

- openSUSE 11.3 (i586) [New Version: 10.3.183.5]:

flash-player-10.3.183.5-0.2.1

References

https://www.suse.com/security/cve/CVE-2011-2130.html

https://www.suse.com/security/cve/CVE-2011-2134.html

https://www.suse.com/security/cve/CVE-2011-2135.html

https://www.suse.com/security/cve/CVE-2011-2136.html

https://www.suse.com/security/cve/CVE-2011-2137.html

https://www.suse.com/security/cve/CVE-2011-2138.html

https://www.suse.com/security/cve/CVE-2011-2139.html

https://www.suse.com/security/cve/CVE-2011-2140.html

https://www.suse.com/security/cve/CVE-2011-2414.html

https://www.suse.com/security/cve/CVE-2011-2415.html

https://www.suse.com/security/cve/CVE-2011-2416.html

https://www.suse.com/security/cve/CVE-2011-2417.html

https://www.suse.com/security/cve/CVE-2011-2425.html

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2011:0897-1
Rating: critical
Affected Products: openSUSE 11.4 openSUSE 11.3 . It includes one version update.

Topics%20covered

Topics Covered

security advisory buffer overflow critical memory corruption integer overflow openSUSE flash player

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here