flash-player-plugin uses md5sum to verify the downloaded file. This hashing method is not secure anymore. It should be switched to: 1. sha256sum 2. Verify the length as well Checking length as well as usage of a better hashing method will make it very difficult to compromise the security. Reproducible: Steps to Reproduce:
Fixed in flash-player-plugin-11.2.202.451-1.mga5.nonfree and flash-player-plugin-11.2.202.451-1.mga4.nonfree. Thanks.
Status: NEW => RESOLVEDResolution: (none) => FIXED