File _patchinfo of Package patchinfo.3959

<patchinfo incident="3959">
  <issue id="1019129" tracker="bnc">VUL-0: flash-player: 24.0.0.194 security update (APSB17-02)</issue>
  <issue id="2017-2928" tracker="cve" />
  <issue id="2017-2938" tracker="cve" />
  <issue id="2017-2934" tracker="cve" />
  <issue id="2017-2930" tracker="cve" />
  <issue id="2017-2936" tracker="cve" />
  <issue id="2017-2937" tracker="cve" />
  <issue id="2017-2927" tracker="cve" />
  <issue id="2017-2931" tracker="cve" />
  <issue id="2017-2932" tracker="cve" />
  <issue id="2017-2926" tracker="cve" />
  <issue id="2017-2925" tracker="cve" />
  <issue id="2017-2935" tracker="cve" />
  <issue id="2017-2933" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>AndreasStieger</packager>
  <description>This update to Adobe Flash 24.0.0.194 fixes the following vulnerabilities advised under APSB17-02:

- security bypass vulnerability that could lead to information disclosure (CVE-2017-2938)
- use-after-free vulnerabilities that could lead to code execution (CVE-2017-2932, CVE-2017-2936, CVE-2017-2937)
- heap buffer overflow vulnerabilities that could lead to code execution
  (CVE-2017-2927, CVE-2017-2933, CVE-2017-2934, CVE-2017-2935)
- memory corruption vulnerabilities that could lead to code execution
  (CVE-2017-2925, CVE-2017-2926, CVE-2017-2928, CVE-2017-2930, CVE-2017-2931)
</description>
  <summary>Security update for flash-player</summary>
</patchinfo>