| Summary: | flash-player-plugin security update 32.0.0.387 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Nicolas Salguero <nicolas.salguero> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | critical | ||
| Priority: | Normal | CC: | andrewsfarm, fri, mageia, sysadmin-bugs |
| Version: | 7 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA7-64-OK | ||
| Source RPM: | flash-player-plugin | CVE: | CVE-2020-9633 |
| Status comment: | |||
|
Description
Nicolas Salguero
2020-06-12 16:23:04 CEST
Suggested advisory: ======================== The updated packages fix a security vulnerability: Use after free that leads to arbitrary code execution in the context of the current user. (CVE-2020-9633) References: https://helpx.adobe.com/security/products/flash-player/apsb20-30.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9633 ======================== Updated packages in core/updates_testing: ======================== flash-player-plugin-32.0.0.387-1.mga7.nonfree from SRPMS: flash-player-plugin-32.0.0.387-1.mga7.nonfree.src.rpm CVE:
(none) =>
CVE-2020-9633 OK mga7-64, intel i7, plasma, nvidia-latest, firefox Updated this and a bunch of other things, rebooted, went to https://get.adobe.com/se/flashplayer/about/ and it say flash is working and is version 32.0.0.387. Whiteboard:
(none) =>
MGA7-64-OK Validating. Advisory in Comment 1. Keywords:
(none) =>
validated_update
Nicolas Lécureuil
2020-06-15 08:52:41 CEST
CC:
(none) =>
mageia An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2020-0264.html Status:
ASSIGNED =>
RESOLVED |