SUSE: 2016:3148-1 Critical: Flash-Player Code Execution Issue

suse

December 14, 2016

An update that fixes 17 vulnerabilities is now available

Summary

This update for flash-player fixes the following issues: - Security update to 24.0.0.186 (bsc#1015379) APSB16-39: * These updates resolve use-after-free vulnerabilities that could have lead to code execution (CVE-2016-7872, CVE-2016-7877, CVE-2016-7878, CVE-2016-7879, CVE-2016-7880, CVE-2016-7881, CVE-2016-7892). * These updates resolve buffer overflow vulnerabilities that could have lead to code execution (CVE-2016-7867, CVE-2016-7868, CVE-2016-7869, CVE-2016-7870). * These updates resolve memory corruption vulnerabilities that could have lead to code execution (CVE-2016-7871, CVE-2016-7873, CVE-2016-7874, CVE-2016-7875, CVE-2016-7876). * These updates resolve a security bypass vulnerability (CVE-2016-7890). - Keep standalone flashplayer at version 11, no newer version exists

Topics Covered

security advisory update critical code execution patch SUSE flash-player

References

#1015379

Cross- CVE-2016-7867 CVE-2016-7868 CVE-2016-7869

CVE-2016-7870 CVE-2016-7871 CVE-2016-7872

CVE-2016-7873 CVE-2016-7874 CVE-2016-7875

CVE-2016-7876 CVE-2016-7877 CVE-2016-7878

CVE-2016-7879 CVE-2016-7880 CVE-2016-7881

CVE-2016-7890 CVE-2016-7892

Affected Products:

SUSE Linux Enterprise Workstation Extension 12-SP1

SUSE Linux Enterprise Desktop 12-SP1

https://www.suse.com/security/cve/CVE-2016-7867.html

https://www.suse.com/security/cve/CVE-2016-7868.html

https://www.suse.com/security/cve/CVE-2016-7869.html

https://www.suse.com/security/cve/CVE-2016-7870.html

https://www.suse.com/security/cve/CVE-2016-7871.html

https://www.suse.com/security/cve/CVE-2016-7872.html

https://www.suse.com/security/cve/CVE-2016-7873.html

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:3148-1

Rating: critical

Topics Covered

security advisory update critical code execution patch SUSE flash-player

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:3148-1 Critical: Flash-Player Code Execution Issue

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:3148-1 Critical: Flash-Player Code Execution Issue

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!