Bugzilla – Bug 850220
VUL-0: CVE-2013-5329: flash-player: memory corruption vulnerabilities that could lead to code execution
Last modified: 2015-02-19 01:34:25 UTC
CVE-2013-5329 Adobe has released Flash Player 11.2.202.327 for Linux to correct the following flaws: * These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2013-5329, CVE-2013-5330). References: http://www.adobe.com/support/security/bulletins/apsb13-26.html http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5329 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5330 https://bugzilla.redhat.com/show_bug.cgi?id=1029692
The SWAMPID for this issue is 55088. This issue was rated as important. Please submit fixed packages until 2013-11-20. When done, please reassign the bug to security-team@suse.de. Patchinfo will be handled by security team.
Submitted: openSUSE:Factory:NonFree: created OBS request id 206822 to multimedia:apps openSUSE:13.1:NonFree: created OBS request id 206823 (It was missing in the maintenance request and an attempt to add it manually fails with HTTP Error 400: Bad Request) openSUSE: (12.3, 12.2): created OBS maintenance request id 206825 SLE11: created IBS request id 29296 SLE10: created IBS request id 29297 (Note: It seems that version 11.2.202.310 was not yet released for SLE10, so we are skipping one update). This time I have to update supplementary script update.sh as well - Adobe changed the web page design. When updating, I also changed it to use .tar.gz files as they are released by Adobe.
This is an autogenerated message for OBS integration: This bug (850220) was mentioned in https://build.opensuse.org/request/show/206823 13.1:NonFree / flash-player
bugbot adjusting priority
This is an autogenerated message for OBS integration: This bug (850220) was mentioned in https://build.opensuse.org/request/show/206858 Factory:NonFree / flash-player
Update released for: flash-player, flash-player-gnome, flash-player-kde4 Products: SLE-DESKTOP 11-SP3 (i386, x86_64)
Update released for: flash-player, flash-player-gnome, flash-player-kde4 Products: SLE-DESKTOP 11-SP2 (i386, x86_64)
openSUSE-SU-2013:1717-1: An update that fixes two vulnerabilities is now available. Category: security (important) Bug References: 850220 CVE References: CVE-2013-5329,CVE-2013-5330 Sources used:
This is an autogenerated message for OBS integration: This bug (850220) was mentioned in https://build.opensuse.org/request/show/207419 Evergreen:11.2:Test / flash-player
released
This is an autogenerated message for OBS integration: This bug (850220) was mentioned in https://build.opensuse.org/request/show/207615 Evergreen:11.2 / flash-player
openSUSE-SU-2013:1737-1: An update that fixes two vulnerabilities is now available. Category: security (important) Bug References: 850220 CVE References: CVE-2013-5329,CVE-2013-5330 Sources used: