File _patchinfo of Package patchinfo.4206

<patchinfo incident="4206">
  <issue id="1025258" tracker="bnc">VUL-0: flash-player: version update 24.0.0.221 (APSB17-04)</issue>
  <issue id="2017-2995" tracker="cve" />
  <issue id="2017-2991" tracker="cve" />
  <issue id="2017-2993" tracker="cve" />
  <issue id="2017-2985" tracker="cve" />
  <issue id="2017-2988" tracker="cve" />
  <issue id="2017-2996" tracker="cve" />
  <issue id="2017-2994" tracker="cve" />
  <issue id="2017-2986" tracker="cve" />
  <issue id="2017-2992" tracker="cve" />
  <issue id="2017-2987" tracker="cve" />
  <issue id="2017-2990" tracker="cve" />
  <issue id="2017-2982" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>abergmann</packager>
  <description>
The Adobe flash-player was updated to 24.0.0.221 to fix the following issues:

Security update to 24.0.0.221 (bsc#1025258), fixing the following
  vulnerabilities advised under APSB17-04:

* type confusion vulnerability that could lead to code execution (CVE-2017-2995).
* integer overflow vulnerability that could lead to code execution (CVE-2017-2987).
* use-after-free vulnerabilities that could lead to code execution (CVE-2017-2982, CVE-2017-2985, CVE-2017-2993, CVE-2017-2994).
* heap buffer overflow vulnerabilities that could lead to code execution (CVE-2017- 2984, CVE-2017-2986, CVE-2017-2992).
* memory corruption vulnerabilities that could lead to code execution (CVE-2017-2988, CVE-2017-2990, CVE-2017-2991, CVE-2017-2996).
</description>
  <summary>Security update for flash-player</summary>
</patchinfo>