Mageia Bugzilla – Bug 12581
Security update request for flash-player-plugin, to 18.104.22.1686
Last modified: 2014-02-05 16:45:34 CET
Adobe Flash Player 22.214.171.1246 contains a fix to a critical security vulnerability found in earlier versions that could cause a crash and potentially allow an attacker to remotely take control of the affected system.
This update resolves an integer underflow vulnerability that could be exploited to execute arbitrary code on the affected system (CVE-2014-0497).
Adobe is aware of reports that an exploit for this vulnerability exists in the wild.
Updated Flash Player 126.96.36.1996 packages are in mga3+mga4 nonfree/updates_testing.
*** Bug 12591 has been marked as a duplicate of this bug. ***
Testing on Mageia 4 x86_64. Everything seems to work as intended. I will report back if I notice anything suspicious.
looks good here
Testing complete on Mageia 4 i586. Successfully ran a few flash-based applications such as the Youtube watcher, random flash games on the Internet and an Adobe test page, both in Firefox and Konqueror.
Tested on Mageia 3, 32 bits. Everything works fine (tested youtube + online games). I will report back if I experience any problems.
Validating. Advisory uploaded.
Could sysadmin please push from 3 & 4 nonfree/updates_testing to updates.