Mageia Bugzilla – Bug 13175
Security update request for flash-player-plugin, to 22.214.171.1240
Last modified: 2014-04-09 17:41:44 CEST
Adobe Flash Player 126.96.36.1990 contains fixes to critical security
vulnerabilities found in earlier versions that could cause a crash and
potentially allow an attacker to remotely take control of the affected system.
This update resolves a use-after-free vulnerability that could result in arbitrary code execution (CVE-2014-0506).
This update resolves a buffer overflow vulnerability that could result in arbitrary code execution (CVE-2014-0507).
This update resolves a security bypass vulnerability that could lead to information disclosure (CVE-2014-0508).
This update resolves a cross-site-scripting vulnerability (CVE-2014-0509).
Updated Flash Player 188.8.131.520 packages are in mga3+mga4
Testing complete mga4 32 & 64
Checked the version at http://www.adobe.com/software/flash/about/ and youtube videos etc then cleared the local storage in kde settings.
Testing complete mga3 32 & 64
Thanks Anssi. Validating.
Could sysadmin please push to 3 & 4 updates