Advisory: ============ Adobe Flash Player 27.0.0.130 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update addresses two memory corruption vulnerabilities that could lead to code execution (CVE-2017-11281, CVE-2017-11282). References: https://helpx.adobe.com/security/products/flash-player/apsb17-28.html ============ Updated Flash Player packages have been submitted to mga5+mga6 nonfree/updates_testing. Source packages: flash-player-plugin-27.0.0.130-1.mga6.nonfree flash-player-plugin-27.0.0.130-1.mga5.nonfree Binary packages: flash-player-plugin flash-player-plugin-kde (mga5 only)
Whiteboard: (none) => MGA5TOO
Install cleanly on Mageia 5 x86_64. http://get.adobe.com/flashplayer/about/ shows version 27.0.0.130 installed.
Whiteboard: MGA5TOO => MGA5TOO MGA5-64-OKCC: (none) => davidwhodgins
Keywords: (none) => advisory
Ok on both arches, both releases. Validating the update.
Keywords: (none) => validated_updateWhiteboard: MGA5TOO MGA5-64-OK => MGA5TOO MGA5-64-OK MGA5-32-OK MGA6-64-OK MGA6-32-OKCC: (none) => sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. http://advisories.mageia.org/MGASA-2017-0339.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED