Advisory: ============ Adobe Flash Player 29.0.0.171 addresses a critical type confusion vulnerability that could lead to arbitrary code execution (CVE-2018-4944). References: https://helpx.adobe.com/security/products/flash-player/apsb18-16.html ============ Updated Flash Player packages have been submitted to mga6 nonfree/updates_testing. Source packages: flash-player-plugin-29.0.0.171-1.mga6.nonfree Binary packages: flash-player-plugin
Tested both arches in Plasma 5.12.2 installs on an HP 6550b laptop (i3, 8GB, Intel graphics, Intel wifi). Packages installed cleanly. One install had had the flashplayer and freshplayer removed, and this package installed both as it should. Tested on a radar sit known to still use Flash for loops, and it worked as it should. Going ahead with OKs on this, as the flashplayer currently in the repos refuses to install due to Adobe's practices
Whiteboard: (none) => MGA6-64-OK MGA6-32-OKCC: (none) => andrewsfarm
Advisory added, validating
Keywords: (none) => advisory, validated_updateCC: (none) => tmb, sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2018-0233.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED