SUSE update for flash-player - Secunia Advisories - Vulnerability Intelligence

SUSE update for flash-player
Secunia Advisory:	SA28213	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2007-12-24
Popularity:	4,285 views

Critical:	Highly critical
Impact:	Unknown Security Bypass Cross Site Scripting Manipulation of data Exposure of sensitive information Privilege escalation DoS System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	openSUSE 10.2 openSUSE 10.3 SUSE Linux 10.1

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2007-4324 CVE-2007-4768 CVE-2007-5275 CVE-2007-6242 CVE-2007-6243 CVE-2007-6244 CVE-2007-6245 CVE-2007-6246

Description: SUSE has issued an update for flash-player. This fixes some vulnerabilities, where one vulnerability has an unknown impact and others can be exploited by malicious, local users to gain escalated privileges and by malicious people to bypass certain security restrictions, conduct cross-site scripting and HTTP request splitting attacks, disclose sensitive information, cause a Denial of Service (DoS), or to potentially compromise a user's system. For more information: SA28161 Solution: Apply updated packages. x86 Platform: openSUSE 10.3: http://download.opensuse.org/pub/open...6/flash-player-9.0.115.0-0.1.i586.rpm 458f40bd9a8e92f6e023e76abead4314 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10...6/flash-player-9.0.115.0-0.1.i586.rpm d633f8e0bbd9c409430a966904774ecc SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10...6/flash-player-9.0.115.0-0.2.i586.rpm c3dda649b3d756ed3e2bacf157488355 Sources: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10...rc/flash-player-9.0.115.0-0.1.src.rpm 8800a58c48768989b74fed31be4f633c SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10...rc/flash-player-9.0.115.0-0.2.src.rpm 1774fb28b6c550af16f738c4daa20a4e openSUSE 10.3: http://download.opensuse.org/pub/open...rc/flash-player-9.0.115.0-0.1.src.rpm ac9d87e16de02daa91202e16cb6fffc3 Novell Linux Desktop 9 http://support.novell.com/techcenter/psdb/abac03d3ea3f90145ddbc82fdd20aebd.html SUSE Linux Enterprise Desktop 10 SP1 http://support.novell.com/techcenter/psdb/abac03d3ea3f90145ddbc82fdd20aebd.html Original Advisory: http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html Other References: SA28161: http://secunia.com/advisories/28161/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

New advisories:	19
New vulnerabilities:	68
Updated advisories:	62

Moderately // 246 views

Debian update for php5

Moderately // 183 views

Atarone CMS Multiple Vulnerabilities

Less // 186 views

MetaGauge Directory Traversal Vulnerability

Less // 214 views

H-Sphere webshell4 Cross-Site Scripting and Request Forgery

Moderately // 204 views

CMME Information Disclosure Security Issues

Moderately // 214 views

Debian update for squid

Less // 219 views

SUSE update for mercurial

Moderately // 263 views

SUSE update for openssh

Moderately // 190 views

SUSE update for dovecot and graphicsmagic

Less // 206 views

Fedora update for mediawiki

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.