[arch-security] [flash-plugin] CVE-2014-0504 : attackers read the clipboard via unspecified vectors
Billy McCann
thebillywayne at gmail.com
Thu Mar 13 11:07:51 EDT 2014
FIXED.
Thanks to felixonmars for the fast fix.
------------------------------------------[00(01|10)11]
-----------------------------------------
Billy Wayne McCann, Ph.D.
Google+ <https://plus.google.com/+BillyWayneMcCann>
PGP Key <http://pgp.mit.edu/pks/lookup?op=get&search=0x223A2CAA56146040>
irc://irc.freenode.net:bwayne
MzM0LTcwMy0wMTIyCg== | base64 -d
"A rich man will always desire what his wealth cannot acquire." ~ Faust
(Goethe)
------------------------------------------[11(10|01)00]-------
-----------------------------------
On Thu, Mar 13, 2014 at 10:54 AM, Billy McCann <thebillywayne at gmail.com>wrote:
> A CVE was announced
> for Adobe Flash Player
> on 3-12
> .
>
>
> flash-plugin has been flagged out of date since 3-11.
> https://www.archlinux.org/packages/extra/i686/flashplugin/
>
> Bug has been filed to alert devs that upgrad
> e
> is critical.
> See issue entry below.
>
> https://bugs.archlinux.org/task/39385
>
> BW
>
>
>
> === B E G I N
>
> B U G
>
> R E P O R T =======
> Description:
> Adobe Flash Player before 11.2.202.346 on Linux allows attackers to read
> the clipboard via unspecified vectors.
>
> Solution:
> Update to latest Flash Player.
>
> Links to Description:
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0504
> http://helpx.adobe.com/security/products/flash-player/apsb14-08.html
>
>
> Additional info:
> * package version(s)
> 11.2.202.341
> * Misc
> Package was flagged as outdated on the 11th of March, 2014.
> https://www.archlinux.org/packages/extra/i686/flashplugin/
>
> ===
>
> E N D
>
> =====
>
>
>
> ------------------------------------------[00(01|10)11]-----------------------------------------
>
> Billy Wayne McCann, Ph.D.
> Google+
> PGP Key
> irc://irc.freenode.net:bwayne
>
> MzM0LTcwMy0wMTIyCg== | base64 -d
>
>
> "A rich man will always desire what his wealth cannot acquire." ~ Faust
> (Goethe)
>
>
> ------------------------------------------[11(10|01)00]------------------------------------------
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.archlinux.org/pipermail/arch-security/attachments/20140313/96d1dfff/attachment.html>
More information about the arch-security
mailing list