Overview

File _patchinfo of Package patchinfo.3332

<patchinfo incident="3332">
  <issue id="1003993" tracker="bnc">Update flash-player's EULA</issue>
  <issue id="1004019" tracker="bnc">VUL-0: flash-player: 11.2.202.637 version</issue>
  <issue id="2016-4273" tracker="cve" />
  <issue id="2016-4286" tracker="cve" />
  <issue id="2016-6981" tracker="cve" />
  <issue id="2016-6982" tracker="cve" />
  <issue id="2016-6983" tracker="cve" />
  <issue id="2016-6984" tracker="cve" />
  <issue id="2016-6985" tracker="cve" />
  <issue id="2016-6986" tracker="cve" />
  <issue id="2016-6987" tracker="cve" />
  <issue id="2016-6989" tracker="cve" />
  <issue id="2016-6990" tracker="cve" />
  <issue id="2016-6992" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>sbrabec</packager>
  <summary>Security update for flash-playerqemu</summary>
  <description>
flash-player was updated to version 11.2.202.637 to fix the following issues (bsc#1004019):

CVE-2016-6992: A type confusion vulnerability that could lead to code execution.
CVE-2016-6981, CVE-2016-6987: use-after-free vulnerabilities that could lead to code execution 
CVE-2016-4286: Security bypass vulnerability 
CVE-2016-4273, CVE-2016-6982, CVE-2016-6983, CVE-2016-6984, CVE-2016-6985, CVE-2016-6986, CVE-2016-6989, CVE-2016-6990: Memory corruption vulnerabilities that could lead to code execution 

Also the EULA was updated to version 23.0 (bsc#1003993).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places