Mageia 2018-0478: flash-player-plugin security update
Summary
Use after free flaw enabling arbitrary code execution. (CVE-2018-15982)
Insecure Library Loading (DLL hijacking) flaw enabling privilege escalation.
(CVE-2018-15983)
References
- https://bugs.mageia.org/show_bug.cgi?id=23950
- https://helpx.adobe.com/support/programs/support-options-free-discontinued-apps-services.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15982
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15983
Resolution
MGASA-2018-0478 - Updated flash-player-plugin packages fix security vulnerability
SRPMS
- 6/nonfree/flash-player-plugin-32.0.0.101-1.mga6.nonfree