diff options
| author | xmj <xmj@FreeBSD.org> | 2015-03-17 01:01:01 +0800 |
|---|---|---|
| committer | xmj <xmj@FreeBSD.org> | 2015-03-17 01:01:01 +0800 |
| commit | c206c5287a65e1ee5e90130b7e603d52a3befd85 (patch) | |
| tree | e5929c57c1c83e130069e1c5cb91dd89df148dbd /security/vuxml | |
| parent | 7fd3501150a43847acd138bc5ce9e8b43e4a64dc (diff) | |
| download | freebsd-ports-gnome-c206c5287a65e1ee5e90130b7e603d52a3befd85.tar.gz freebsd-ports-gnome-c206c5287a65e1ee5e90130b7e603d52a3befd85.tar.zst freebsd-ports-gnome-c206c5287a65e1ee5e90130b7e603d52a3befd85.zip | |
Add latest security vulnerabilities in linux-*-flashplugin11:
CVE-2015-0332
CVE-2015-0333
CVE-2015-0334
CVE-2015-0335
CVE-2015-0336
CVE-2015-0337
CVE-2015-0338
CVE-2015-0339
CVE-2015-0340
CVE-2015-0341
CVE-2015-0342
Differential Revision: https://reviews.freebsd.org/D2061
Approved by: swills (mentor)
Diffstat (limited to 'security/vuxml')
| -rw-r--r-- | security/vuxml/vuln.xml | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index aeeab5e7befa..f1c69be96f1f 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -57,6 +57,64 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="8b3ecff5-c9b2-11e4-b71f-00bd5af88c00"> + <topic>Adobe Flash Player -- critical vulnerabilities</topic> + <affects> + <package> + <name>linux-c6-flashplugin11</name> + <range><le>11.2r202.442</le></range> + </package> + <package> + <name>linux-f10-flashplugin11</name> + <range><le>11.2r202.442</le></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Adobe reports:</p> + <blockquote cite="https://helpx.adobe.com/security/products/flash-player/apsb15-05.html"> + <p> + Adobe has released security updates for Adobe Flash Player for + Windows, Macintosh and Linux. These updates address vulnerabilities + that could potentially allow an attacker to take control of the + affected system. + These updates resolve memory corruption vulnerabilities that could + lead to code execution (CVE-2015-0332, CVE-2015-0333, CVE-2015-0335, + CVE-2015-0339). + These updates resolve type confusion vulnerabilities that could lead + to code execution (CVE-2015-0334, CVE-2015-0336). + These updates resolve a vulnerability that could lead to a + cross-domain policy bypass (CVE-2015-0337). + These updates resolve a vulnerability that could lead to a file + upload restriction bypass (CVE-2015-0340). + These updates resolve an integer overflow vulnerability that could + lead to code execution (CVE-2015-0338). + These updates resolve use-after-free vulnerabilities that could lead + to code execution (CVE-2015-0341, CVE-2015-0342). + </p> + </blockquote> + </body> + </description> + <references> + <url>https://helpx.adobe.com/security/products/flash-player/apsb15-05.html</url> + <cvename>CVE-2015-0332</cvename> + <cvename>CVE-2015-0333</cvename> + <cvename>CVE-2015-0334</cvename> + <cvename>CVE-2015-0335</cvename> + <cvename>CVE-2015-0336</cvename> + <cvename>CVE-2015-0337</cvename> + <cvename>CVE-2015-0338</cvename> + <cvename>CVE-2015-0339</cvename> + <cvename>CVE-2015-0340</cvename> + <cvename>CVE-2015-0341</cvename> + <cvename>CVE-2015-0342</cvename> + </references> + <dates> + <discovery>2015-03-12</discovery> + <entry>2015-03-13</entry> + </dates> + </vuln> + <vuln vid="451a6c79-c92b-11e4-a835-000c292ee6b8"> <topic>sympa -- Remote attackers can read arbitrary files</topic> <affects> |