Adobe has released a new flash-player:
Out-of-bounds read Information Disclosure Important CVE-2018-12824
Security bypass Security Mitigation Bypass Important CVE-2018-12825
Out-of-bounds read Information Disclosure Important CVE-2018-12826
Out-of-bounds read Information Disclosure Important CVE-2018-12827
Use of a component with a known vulnerability Privilege Escalation Important CVE-2018-12828
Testing mga6 64
Confirmed correct version downloaded.
Downloading from http://fpdownload.adobe.com/get/flashplayer/pdc/188.8.131.52/flash-player-ppapi-184.108.40.206-release.x86_64.rpm:
Tested by playing some flash games and version at:
YOUR SYSTEM INFORMATION
Your Flash Version 220.127.116.11
Your browser name Firefox
Your Operating System (OS) Linux
Advisory, added to svn:
subject: Updated flash-player-plugin packages fix security vulnerabilities
Updated flash-player-plugin packages fix security vulnerabilities:
* Out-of-bounds read that can lead to Information Disclosure
(CVE-2018-12824, CVE-2018-12826, CVE-2018-12827)
* Security bypass that can lead to Security Mitigation Bypass
* Use of a component with a known vulnerability can lead to a
Privilege Escalation (CVE-2018-12828)
Works on 32bit too, validating...
An update for this issue has been pushed to the Mageia Updates repository.