SUSE-SU-2015:1618-1
Vulnerability from csaf_suse - Published: 2015-09-22 14:16 - Updated: 2015-09-22 14:16Summary
Security update for flash-player
Severity
Important
Notes
Title of the patch: Security update for flash-player
Description of the patch:
Adobe Flash Player was updated to 11.2.202.521 (APSB15-23 bsc#946880) fixing several security issues:
More information can be found on:
https://helpx.adobe.com/security/products/flash-player/apsb15-23.html
Patchnames: SUSE-SLE-DESKTOP-12-2015-581,SUSE-SLE-WE-12-2015-581
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for flash-player",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nAdobe Flash Player was updated to 11.2.202.521 (APSB15-23 bsc#946880) fixing several security issues:\n\nMore information can be found on:\n\n https://helpx.adobe.com/security/products/flash-player/apsb15-23.html\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-2015-581,SUSE-SLE-WE-12-2015-581",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1618-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:1618-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151618-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:1618-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-September/001601.html"
},
{
"category": "self",
"summary": "SUSE Bug 946880",
"url": "https://bugzilla.suse.com/946880"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5567 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5568 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5570 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5571 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5572 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5573 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5574 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5575 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5576 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5577 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5578 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5579 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5579/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5580 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5581 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5581/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5582 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5584 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5587 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5588 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-6676 page",
"url": "https://www.suse.com/security/cve/CVE-2015-6676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-6677 page",
"url": "https://www.suse.com/security/cve/CVE-2015-6677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-6678 page",
"url": "https://www.suse.com/security/cve/CVE-2015-6678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-6679 page",
"url": "https://www.suse.com/security/cve/CVE-2015-6679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-6682 page",
"url": "https://www.suse.com/security/cve/CVE-2015-6682/"
}
],
"title": "Security update for flash-player",
"tracking": {
"current_release_date": "2015-09-22T14:16:37Z",
"generator": {
"date": "2015-09-22T14:16:37Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:1618-1",
"initial_release_date": "2015-09-22T14:16:37Z",
"revision_history": [
{
"date": "2015-09-22T14:16:37Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "flash-player-11.2.202.521-102.1.x86_64",
"product": {
"name": "flash-player-11.2.202.521-102.1.x86_64",
"product_id": "flash-player-11.2.202.521-102.1.x86_64"
}
},
{
"category": "product_version",
"name": "flash-player-gnome-11.2.202.521-102.1.x86_64",
"product": {
"name": "flash-player-gnome-11.2.202.521-102.1.x86_64",
"product_id": "flash-player-gnome-11.2.202.521-102.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12",
"product": {
"name": "SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12",
"product_id": "SUSE Linux Enterprise Workstation Extension 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "flash-player-11.2.202.521-102.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64"
},
"product_reference": "flash-player-11.2.202.521-102.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flash-player-gnome-11.2.202.521-102.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
},
"product_reference": "flash-player-gnome-11.2.202.521-102.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flash-player-11.2.202.521-102.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12",
"product_id": "SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64"
},
"product_reference": "flash-player-11.2.202.521-102.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flash-player-gnome-11.2.202.521-102.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12",
"product_id": "SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
},
"product_reference": "flash-player-gnome-11.2.202.521-102.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-5567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5567"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5579.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5567",
"url": "https://www.suse.com/security/cve/CVE-2015-5567"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5567",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5567"
},
{
"cve": "CVE-2015-5568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5568"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to cause a denial of service (vector-length corruption) or possibly have unspecified other impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5568",
"url": "https://www.suse.com/security/cve/CVE-2015-5568"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5568",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5568"
},
{
"cve": "CVE-2015-5570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5570"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5574, CVE-2015-5581, CVE-2015-5584, and CVE-2015-6682.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5570",
"url": "https://www.suse.com/security/cve/CVE-2015-5570"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5570",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5570"
},
{
"cve": "CVE-2015-5571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5571"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 do not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks against JSONP endpoints, and obtain sensitive information, via a crafted OBJECT element with SWF content satisfying the character-set requirements of a callback API. NOTE: this issue exists because of an incomplete fix for CVE-2014-4671 and CVE-2014-5333.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5571",
"url": "https://www.suse.com/security/cve/CVE-2015-5571"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5571",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5571"
},
{
"cve": "CVE-2015-5572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5572"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5572",
"url": "https://www.suse.com/security/cve/CVE-2015-5572"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5572",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5572"
},
{
"cve": "CVE-2015-5573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5573"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code by leveraging an unspecified \"type confusion.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5573",
"url": "https://www.suse.com/security/cve/CVE-2015-5573"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5573",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5573"
},
{
"cve": "CVE-2015-5574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5574"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5570, CVE-2015-5581, CVE-2015-5584, and CVE-2015-6682.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5574",
"url": "https://www.suse.com/security/cve/CVE-2015-5574"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5574",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5574"
},
{
"cve": "CVE-2015-5575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5575"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5577, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, CVE-2015-5588, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5575",
"url": "https://www.suse.com/security/cve/CVE-2015-5575"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5575",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5575"
},
{
"cve": "CVE-2015-5576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5576"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5576",
"url": "https://www.suse.com/security/cve/CVE-2015-5576"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5576",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5576"
},
{
"cve": "CVE-2015-5577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5577"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, CVE-2015-5588, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5577",
"url": "https://www.suse.com/security/cve/CVE-2015-5577"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5577",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5577"
},
{
"cve": "CVE-2015-5578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5578"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5577, CVE-2015-5580, CVE-2015-5582, CVE-2015-5588, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5578",
"url": "https://www.suse.com/security/cve/CVE-2015-5578"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5578",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5578"
},
{
"cve": "CVE-2015-5579",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5579"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5567.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5579",
"url": "https://www.suse.com/security/cve/CVE-2015-5579"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5579",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5579"
},
{
"cve": "CVE-2015-5580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5580"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5577, CVE-2015-5578, CVE-2015-5582, CVE-2015-5588, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5580",
"url": "https://www.suse.com/security/cve/CVE-2015-5580"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5580",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5580"
},
{
"cve": "CVE-2015-5581",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5581"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5570, CVE-2015-5574, CVE-2015-5584, and CVE-2015-6682.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5581",
"url": "https://www.suse.com/security/cve/CVE-2015-5581"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5581",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5581"
},
{
"cve": "CVE-2015-5582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5582"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5577, CVE-2015-5578, CVE-2015-5580, CVE-2015-5588, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5582",
"url": "https://www.suse.com/security/cve/CVE-2015-5582"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5582",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5582"
},
{
"cve": "CVE-2015-5584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5584"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5570, CVE-2015-5574, CVE-2015-5581, and CVE-2015-6682.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5584",
"url": "https://www.suse.com/security/cve/CVE-2015-5584"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5584",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5584"
},
{
"cve": "CVE-2015-5587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5587"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5587",
"url": "https://www.suse.com/security/cve/CVE-2015-5587"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5587",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5587"
},
{
"cve": "CVE-2015-5588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5588"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5577, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, and CVE-2015-6677.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5588",
"url": "https://www.suse.com/security/cve/CVE-2015-5588"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-5588",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-5588"
},
{
"cve": "CVE-2015-6676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-6676"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-6678.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-6676",
"url": "https://www.suse.com/security/cve/CVE-2015-6676"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-6676",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-6676"
},
{
"cve": "CVE-2015-6677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-6677"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5575, CVE-2015-5577, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, and CVE-2015-5588.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-6677",
"url": "https://www.suse.com/security/cve/CVE-2015-6677"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-6677",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-6677"
},
{
"cve": "CVE-2015-6678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-6678"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-6676.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-6678",
"url": "https://www.suse.com/security/cve/CVE-2015-6678"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-6678",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-6678"
},
{
"cve": "CVE-2015-6679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-6679"
}
],
"notes": [
{
"category": "general",
"text": "Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allow attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-6679",
"url": "https://www.suse.com/security/cve/CVE-2015-6679"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-6679",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-6679"
},
{
"cve": "CVE-2015-6682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-6682"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK \u0026 Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5570, CVE-2015-5574, CVE-2015-5581, and CVE-2015-5584.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-6682",
"url": "https://www.suse.com/security/cve/CVE-2015-6682"
},
{
"category": "external",
"summary": "SUSE Bug 946880 for CVE-2015-6682",
"url": "https://bugzilla.suse.com/946880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.521-102.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.521-102.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-09-22T14:16:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-6682"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…