Bug 4828

Summary: Update request for flash-player-plugin, to 11.1.102.63
Product: Mageia Reporter: Anssi Hannula <anssi.hannula>
Component: RPM PackagesAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: Normal CC: davidwhodgins, sysadmin-bugs, tmb
Version: 1Keywords: Security, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: flash-player-plugin CVE:
Status comment:

Description Anssi Hannula 2012-03-06 20:56:28 CET
Flash Player 11.1.102.63 has been pushed to mga1 nonfree/updates_testing.

Advisory:
============
Adobe Flash Player 11.1.102.63 contains fixes to critical security vulnerabilities found in earlier versions. These vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system.

This update resolves a memory corruption vulnerability in Matrix3D that could lead to code executionn (CVE-2012-0768).

This update resolves integer errors that could lead to information disclosure (CVE-2012-0769).

References:
http://www.adobe.com/support/security/bulletins/apsb12-05.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0768
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0769
============

Updated Flash Player 11.1.102.63 packages are in mga1 nonfree/updates_testing
as flash-player-plugin (i586 and x86_64) and flash-player-plugin-kde (i586 and
x86_64).

==========
Suggested testing procedure:
==========
Package installs and Flash works.
Comment 1 Dave Hodgins 2012-03-06 23:31:06 CET
Testing complete on i586 for the srpm
flash-player-plugin-11.1.102.63-1.mga1.nonfree.src.rpm

Testing using usual browser sites and Tools/More/Adobe Flash Player
under kde.

CC: (none) => davidwhodgins

Comment 2 claire robinson 2012-03-07 00:54:51 CET
Tested Ok x86_64

Validating. Thanks Anssi.

SRPM: flash-player-plugin-11.1.102.63-1.mga1.nonfree.src.rpm

Could sysdamin please push from nonfree/updates_testing to nonfree/updates

Please see comment 0 for advisory.

Thankyou!
claire robinson 2012-03-07 00:55:03 CET

Keywords: (none) => validated_update

Comment 3 claire robinson 2012-03-07 00:56:17 CET
Sysadmin please push, see comment 2 for details.

(sorry for the 3 'Saves')

CC: (none) => sysadmin-bugs

Comment 4 Thomas Backlund 2012-03-07 10:43:28 CET
update pushed.

Status: NEW => RESOLVED
CC: (none) => tmb
Resolution: (none) => FIXED