openSUSE-2014-121 low openSUSE 13.2 NonFree Update Testupdate for 13.2:NonFree flash-player-11.2.202.310-2.4.1.i586.rpm flash-player-11.2.202.310-2.4.1.nosrc.rpm flash-player-gnome-11.2.202.310-2.4.1.i586.rpm flash-player-kde4-11.2.202.310-2.4.1.i586.rpm flash-player-11.2.202.310-2.4.1.x86_64.rpm flash-player-gnome-11.2.202.310-2.4.1.x86_64.rpm flash-player-kde4-11.2.202.310-2.4.1.x86_64.rpm openSUSE-2014-203 low openSUSE 13.2 NonFree Update This is a testupdate to refresh the openSUSE 13.2 NonFree Update repository flash-player-11.2.202.310-2.7.1.i586.rpm flash-player-11.2.202.310-2.7.1.nosrc.rpm flash-player-gnome-11.2.202.310-2.7.1.i586.rpm flash-player-kde4-11.2.202.310-2.7.1.i586.rpm flash-player-11.2.202.310-2.7.1.x86_64.rpm flash-player-gnome-11.2.202.310-2.7.1.x86_64.rpm flash-player-kde4-11.2.202.310-2.7.1.x86_64.rpm openSUSE-2014-683 important openSUSE 13.2 NonFree Update flash-player was updated to version 11.2.202.418 to fix 18 security issues. These security issues were fixed: - Memory corruption vulnerabilities that could lead to code execution (CVE-2014-0576, CVE-2014-0581, CVE-2014-8440, CVE-2014-8441). - Use-after-free vulnerabilities that could lead to code execution (CVE-2014-0573, CVE-2014-0588, CVE-2014-8438). - A double free vulnerability that could lead to code execution (CVE-2014-0574). - Type confusion vulnerabilities that could lead to code execution (CVE-2014-0577, CVE-2014-0584, CVE-2014-0585, CVE-2014-0586, CVE-2014-0590). - Heap buffer overflow vulnerabilities that could lead to code execution (CVE-2014-0582, CVE-2014-0589). - An information disclosure vulnerability that could be exploited to disclose session tokens (CVE-2014-8437). - A heap buffer overflow vulnerability that could be exploited to perform privilege escalation from low to medium integrity level (CVE-2014-0583). - A permission issue that could be exploited to perform privilege escalation from low to medium integrity level (CVE-2014-8442). flash-player-11.2.202.418-2.11.1.i586.rpm flash-player-11.2.202.418-2.11.1.nosrc.rpm flash-player-gnome-11.2.202.418-2.11.1.i586.rpm flash-player-kde4-11.2.202.418-2.11.1.i586.rpm flash-player-11.2.202.418-2.11.1.x86_64.rpm flash-player-gnome-11.2.202.418-2.11.1.x86_64.rpm flash-player-kde4-11.2.202.418-2.11.1.x86_64.rpm openSUSE-2014-766 important openSUSE 13.2 NonFree Update flash-player received a security update to version to 11.2.202.425 (bsc#909219), which fixes: APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443, CVE-2014-9162, CVE-2014-9163, CVE-2014-9164 flash-player-11.2.202.425-2.17.1.i586.rpm flash-player-11.2.202.425-2.17.1.nosrc.rpm flash-player-gnome-11.2.202.425-2.17.1.i586.rpm flash-player-kde4-11.2.202.425-2.17.1.i586.rpm flash-player-11.2.202.425-2.17.1.x86_64.rpm flash-player-gnome-11.2.202.425-2.17.1.x86_64.rpm flash-player-kde4-11.2.202.425-2.17.1.x86_64.rpm openSUSE-2015-30 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.429 (bsc#913057): * APSB15-01, CVE-2015-0301, CVE-2015-0302, CVE-2015-0303, CVE-2015-0304, CVE-2015-0305, CVE-2015-0306, CVE-2015-0307, CVE-2015-0308, CVE-2015-0309. - Disable flash player on machines without SSE2 (bnc#856386). More information can be found on http://helpx.adobe.com/security/products/flash-player/apsb15-01.html flash-player-11.2.202.429-2.21.1.i586.rpm flash-player-11.2.202.429-2.21.1.nosrc.rpm flash-player-gnome-11.2.202.429-2.21.1.i586.rpm flash-player-kde4-11.2.202.429-2.21.1.i586.rpm flash-player-11.2.202.429-2.21.1.x86_64.rpm flash-player-gnome-11.2.202.429-2.21.1.x86_64.rpm flash-player-kde4-11.2.202.429-2.21.1.x86_64.rpm openSUSE-2015-49 critical openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.438 to fix one security isssue. http://helpx.adobe.com/security/products/flash-player/apsb15-02.html (APSB15-02, CVE-2015-0310) flash-player-11.2.202.438-2.25.1.i586.rpm flash-player-11.2.202.438-2.25.1.nosrc.rpm flash-player-gnome-11.2.202.438-2.25.1.i586.rpm flash-player-kde4-11.2.202.438-2.25.1.i586.rpm flash-player-11.2.202.438-2.25.1.x86_64.rpm flash-player-gnome-11.2.202.438-2.25.1.x86_64.rpm flash-player-kde4-11.2.202.438-2.25.1.x86_64.rpm openSUSE-2015-78 critical openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.440 (bsc#914463, APSA15-01, CVE-2015-0311). More information can be found on https://helpx.adobe.com/security/products/flash-player/apsa15-01.html An update of flashplayer (executable binary) for i386 is currently not available. Disabled! flash-player-11.2.202.440-2.29.1.i586.rpm flash-player-11.2.202.440-2.29.1.nosrc.rpm flash-player-gnome-11.2.202.440-2.29.1.i586.rpm flash-player-kde4-11.2.202.440-2.29.1.i586.rpm flash-player-11.2.202.440-2.29.1.x86_64.rpm flash-player-gnome-11.2.202.440-2.29.1.x86_64.rpm flash-player-kde4-11.2.202.440-2.29.1.x86_64.rpm openSUSE-2015-118 critical openSUSE 13.2 NonFree Update flash-player was updated to version 11.2.202.442 to fix 18 security issues. These security issues were fixed: - Use-after-free vulnerabilities that could lead to code execution (CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322). - Memory corruption vulnerabilities that could lead to code execution (CVE-2015-0314, CVE-2015-0316, CVE-2015-0318, CVE-2015-0321, CVE-2015-0329, CVE-2015-0330). - Type confusion vulnerabilities that could lead to code execution (CVE-2015-0317, CVE-2015-0319). - Heap buffer overflow vulnerabilities that could lead to code execution (CVE-2015-0323, CVE-2015-0327). - Buffer overflow vulnerability that could lead to code execution (CVE-2015-0324). - Null pointer dereference issues (CVE-2015-0325, CVE-2015-0326, CVE-2015-0328). More information is available at https://helpx.adobe.com/security/products/flash-player/apsb15-04.html flash-player-11.2.202.442-2.33.1.i586.rpm flash-player-11.2.202.442-2.33.1.nosrc.rpm flash-player-gnome-11.2.202.442-2.33.1.i586.rpm flash-player-kde4-11.2.202.442-2.33.1.i586.rpm flash-player-11.2.202.442-2.33.1.x86_64.rpm flash-player-gnome-11.2.202.442-2.33.1.x86_64.rpm flash-player-kde4-11.2.202.442-2.33.1.x86_64.rpm openSUSE-2015-225 critical openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.451 (bsc#922033). These security issues were fixed: - Memory corruption vulnerabilities that could lead to code execution (CVE-2015-0332, CVE-2015-0333, CVE-2015-0335, CVE-2015-0339). - Type confusion vulnerabilities that could lead to code execution (CVE-2015-0334, CVE-2015-0336). - A vulnerability that could lead to a cross-domain policy bypass (CVE-2015-0337). - A vulnerability that could lead to a file upload restriction bypass (CVE-2015-0340). - An integer overflow vulnerability that could lead to code execution (CVE-2015-0338). - Use-after-free vulnerabilities that could lead to code execution (CVE-2015-0341, CVE-2015-0342). flash-player-11.2.202.451-2.45.1.i586.rpm flash-player-11.2.202.451-2.45.1.nosrc.rpm flash-player-gnome-11.2.202.451-2.45.1.i586.rpm flash-player-kde4-11.2.202.451-2.45.1.i586.rpm flash-player-11.2.202.451-2.45.1.x86_64.rpm flash-player-gnome-11.2.202.451-2.45.1.x86_64.rpm flash-player-kde4-11.2.202.451-2.45.1.x86_64.rpm openSUSE-2015-285 moderate openSUSE 13.2 NonFree Update This recommended update for gst-fluendo-mp3 provides version 21 with various fixes and improvements, including a segfault on a specific file (boo#923607). gst-fluendo-mp3-21-5.3.1.nosrc.rpm gstreamer-0_10-fluendo-mp3-21-5.3.1.i586.rpm gstreamer-fluendo-mp3-21-5.3.1.i586.rpm gstreamer-0_10-fluendo-mp3-21-5.3.1.x86_64.rpm gstreamer-fluendo-mp3-21-5.3.1.x86_64.rpm openSUSE-2015-304 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.457 to fix several security issues that could lead to remote code execution. An exploit for CVE-2015-3043 was reported to exist in the wild. The following vulnerabilities were fixed: * Memory corruption vulnerabilities that could lead to code execution (CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, CVE-2015-3042, CVE-2015-3043). * Type confusion vulnerability that could lead to code execution (CVE-2015-0356). * Buffer overflow vulnerability that could lead to code execution (CVE-2015-0348). * Use-after-free vulnerabilities that could lead to code execution (CVE-2015-0349, CVE-2015-0351, CVE-2015-0358, CVE-2015-3039). * Double-free vulnerabilities that could lead to code execution (CVE-2015-0346, CVE-2015-0359). * Memory leak vulnerabilities that could be used to bypass ASLR (CVE-2015-0357, CVE-2015-3040). * Security bypass vulnerability that could lead to information disclosure (CVE-2015-3044). flash-player-11.2.202.457-2.48.1.i586.rpm flash-player-11.2.202.457-2.48.1.nosrc.rpm flash-player-gnome-11.2.202.457-2.48.1.i586.rpm flash-player-kde4-11.2.202.457-2.48.1.i586.rpm flash-player-11.2.202.457-2.48.1.x86_64.rpm flash-player-gnome-11.2.202.457-2.48.1.x86_64.rpm flash-player-kde4-11.2.202.457-2.48.1.x86_64.rpm openSUSE-2015-372 important openSUSE 13.2 NonFree Update The Adobe flash-player package was updated to version 11.2.202.460 to fix several security issues. The following vulnerabilities were fixed (bsc#930677): * APSB15-09, CVE-2015-3044, CVE-2015-3077, CVE-2015-3078, CVE-2015-3079, CVE-2015-3080, CVE-2015-3081, CVE-2015-3082, CVE-2015-3083, CVE-2015-3084, CVE-2015-3085, CVE-2015-3086, CVE-2015-3087, CVE-2015-3088, CVE-2015-3089, CVE-2015-3090, CVE-2015-3091, CVE-2015-3092, CVE-2015-3093 More information can be found at the Adobe Security Bulletin APSB15-09: https://helpx.adobe.com/security/products/flash-player/apsb15-09.html flash-player-11.2.202.460-2.51.1.i586.rpm flash-player-11.2.202.460-2.51.1.nosrc.rpm flash-player-gnome-11.2.202.460-2.51.1.i586.rpm flash-player-kde4-11.2.202.460-2.51.1.i586.rpm flash-player-11.2.202.460-2.51.1.x86_64.rpm flash-player-gnome-11.2.202.460-2.51.1.x86_64.rpm flash-player-kde4-11.2.202.460-2.51.1.x86_64.rpm openSUSE-2015-412 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.466 to fix multiple security issues. The following vulnerabilities were fixed: * CVE-2015-3096: bypass for CVE-2014-5333 * CVE-2015-3098: vulnerabilities that could be exploited to bypass the same-origin-policy and lead to information disclosure * CVE-2015-3099: vulnerabilities that could be exploited to bypass the same-origin-policy and lead to information disclosure * CVE-2015-3100: stack overflow vulnerability that could lead to code execution * CVE-2015-3102: vulnerabilities that could be exploited to bypass the same-origin-policy and lead to information disclosure * CVE-2015-3103: use-after-free vulnerabilities that could lead to code execution * CVE-2015-3104: integer overflow vulnerability that could lead to code execution * CVE-2015-3105: memory corruption vulnerability that could lead to code execution * CVE-2015-3106: use-after-free vulnerabilities that could lead to code execution * CVE-2015-3107: use-after-free vulnerabilities that could lead to code execution * CVE-2015-3108: memory leak vulnerability that could be used to bypass ASLR flash-player-11.2.202.466-2.55.1.i586.rpm flash-player-11.2.202.466-2.55.1.nosrc.rpm flash-player-gnome-11.2.202.466-2.55.1.i586.rpm flash-player-kde4-11.2.202.466-2.55.1.i586.rpm flash-player-11.2.202.466-2.55.1.x86_64.rpm flash-player-gnome-11.2.202.466-2.55.1.x86_64.rpm flash-player-kde4-11.2.202.466-2.55.1.x86_64.rpm openSUSE-2015-450 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.468 to fix one security issue. The following vulnerability was fixed: * CVE-2015-3113: A heap buffer overflow vulnerability could have allowed code execution (bsc#935701, APSB15-14) flash-player-11.2.202.468-2.58.1.i586.rpm flash-player-11.2.202.468-2.58.1.nosrc.rpm flash-player-gnome-11.2.202.468-2.58.1.i586.rpm flash-player-kde4-11.2.202.468-2.58.1.i586.rpm flash-player-11.2.202.468-2.58.1.x86_64.rpm flash-player-gnome-11.2.202.468-2.58.1.x86_64.rpm flash-player-kde4-11.2.202.468-2.58.1.x86_64.rpm openSUSE-2015-473 critical openSUSE 13.2 NonFree Update flash-player was updated to fix one security issue. This security issue was fixed: - CVE-2015-5119: Unspecified vulnerability allowing remote attackers to take over the system (bsc#937339). flash-player-11.2.202.481-2.61.1.i586.rpm flash-player-11.2.202.481-2.61.1.nosrc.rpm flash-player-gnome-11.2.202.481-2.61.1.i586.rpm flash-player-kde4-11.2.202.481-2.61.1.i586.rpm flash-player-11.2.202.481-2.61.1.x86_64.rpm flash-player-gnome-11.2.202.481-2.61.1.x86_64.rpm flash-player-kde4-11.2.202.481-2.61.1.x86_64.rpm openSUSE-2015-496 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.491 to fix two security issues. The following vulnerabilities were fixed: * CVE-2015-5122: Specially crafted Flash content allowed attackers to execute arbitrary code via a use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation. * CVE-2015-5123: Specially crafted Flash content allowed attackers to execute arbitrary code via a use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation. flash-player-11.2.202.491-2.64.1.i586.rpm flash-player-11.2.202.491-2.64.1.nosrc.rpm flash-player-gnome-11.2.202.491-2.64.1.i586.rpm flash-player-kde4-11.2.202.491-2.64.1.i586.rpm flash-player-11.2.202.491-2.64.1.x86_64.rpm flash-player-gnome-11.2.202.491-2.64.1.x86_64.rpm flash-player-kde4-11.2.202.491-2.64.1.x86_64.rpm openSUSE-2015-546 critical openSUSE 13.2 NonFree Update - Security update to 11.2.202.508 (bsc#941239): * APSB15-19: CVE-2015-3107, CVE-2015-5124, CVE-2015-5125, CVE-2015-5127, CVE-2015-5128, CVE-2015-5129, CVE-2015-5130, CVE-2015-5131, CVE-2015-5132, CVE-2015-5133, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5541, CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5550, CVE-2015-5551, CVE-2015-5552, CVE-2015-5553, CVE-2015-5554, CVE-2015-5555, CVE-2015-5556, CVE-2015-5557, CVE-2015-5558, CVE-2015-5559, CVE-2015-5560, CVE-2015-5561, CVE-2015-5562, CVE-2015-5563 flash-player-11.2.202.508-2.67.1.i586.rpm flash-player-11.2.202.508-2.67.1.nosrc.rpm flash-player-gnome-11.2.202.508-2.67.1.i586.rpm flash-player-kde4-11.2.202.508-2.67.1.i586.rpm flash-player-11.2.202.508-2.67.1.x86_64.rpm flash-player-gnome-11.2.202.508-2.67.1.x86_64.rpm flash-player-kde4-11.2.202.508-2.67.1.x86_64.rpm openSUSE-2015-603 critical openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.521 (APSB15-23 bsc#946880) fixing several security issues: More information can be found on: https://helpx.adobe.com/security/products/flash-player/apsb15-23.html flash-player-11.2.202.521-2.70.1.i586.rpm flash-player-11.2.202.521-2.70.1.nosrc.rpm flash-player-gnome-11.2.202.521-2.70.1.i586.rpm flash-player-kde4-11.2.202.521-2.70.1.i586.rpm flash-player-11.2.202.521-2.70.1.x86_64.rpm flash-player-gnome-11.2.202.521-2.70.1.x86_64.rpm flash-player-kde4-11.2.202.521-2.70.1.x86_64.rpm openSUSE-2015-656 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.535 to fix a number of security issues. (boo#950169, APSB15-25) The following vulnerabilities were fixed: * CVE-2015-7628: Vulnerability that could be exploited to bypass the same-origin-policy and lead to information disclosure * CVE-2015-5569: Defense-in-depth feature in the Flash broker API * CVE-2015-7629, CVE-2015-7631, CVE-2015-7643, CVE-2015-7644: Use-after-free vulnerabilities that could lead to code execution * CVE-2015-7632: Buffer overflow vulnerability that could lead to code execution * CVE-2015-7625, CVE-2015-7626, CVE-2015-7627, CVE-2015-7630, CVE-2015-7633, CVE-2015-7634: Memory corruption vulnerabilities that could lead to code execution flash-player-11.2.202.535-2.73.2.i586.rpm flash-player-11.2.202.535-2.73.2.nosrc.rpm flash-player-gnome-11.2.202.535-2.73.2.i586.rpm flash-player-kde4-11.2.202.535-2.73.2.i586.rpm flash-player-11.2.202.535-2.73.2.x86_64.rpm flash-player-gnome-11.2.202.535-2.73.2.x86_64.rpm flash-player-kde4-11.2.202.535-2.73.2.x86_64.rpm openSUSE-2015-665 critical openSUSE 13.2 NonFree Update flash-player was updated to fix one security issue. This security issue was fixed: - CVE-2015-7645: Critical vulnerability affecting 11.2.202.535 used in Pawn Storm (APSA15-05) (bsc#950474). flash-player-11.2.202.540-2.76.1.i586.rpm flash-player-11.2.202.540-2.76.1.nosrc.rpm flash-player-gnome-11.2.202.540-2.76.1.i586.rpm flash-player-kde4-11.2.202.540-2.76.1.i586.rpm flash-player-11.2.202.540-2.76.1.x86_64.rpm flash-player-gnome-11.2.202.540-2.76.1.x86_64.rpm flash-player-kde4-11.2.202.540-2.76.1.x86_64.rpm openSUSE-2015-738 moderate openSUSE 13.2 NonFree Update The flash-player package was updated to fix the following security issues: - Security update to 11.2.202.548 (bsc#954512): * APSB15-28, CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-7661, CVE-2015-7662, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, CVE-2015-8046 flash-player-11.2.202.548-2.79.1.i586.rpm flash-player-11.2.202.548-2.79.1.nosrc.rpm flash-player-gnome-11.2.202.548-2.79.1.i586.rpm flash-player-kde4-11.2.202.548-2.79.1.i586.rpm flash-player-11.2.202.548-2.79.1.x86_64.rpm flash-player-gnome-11.2.202.548-2.79.1.x86_64.rpm flash-player-kde4-11.2.202.548-2.79.1.x86_64.rpm openSUSE-2015-882 important openSUSE 13.2 NonFree Update This update for flash-player to version 11.2.202.554 fixes the following security issues in Adobe security advisory APSB15-32. * These updates resolve heap buffer overflow vulnerabilities that could lead to code execution (CVE-2015-8438, CVE-2015-8446). * These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2015-8444, CVE-2015-8443, CVE-2015-8417, CVE-2015-8416, CVE-2015-8451, CVE-2015-8047, CVE-2015-8455, CVE-2015-8045, CVE-2015-8418, CVE-2015-8060, CVE-2015-8419, CVE-2015-8408). * These updates resolve security bypass vulnerabilities (CVE-2015-8453, CVE-2015-8440, CVE-2015-8409). * These updates resolve a stack overflow vulnerability that could lead to code execution (CVE-2015-8407). * These updates resolve a type confusion vulnerability that could lead to code execution (CVE-2015-8439). * These updates resolve an integer overflow vulnerability that could lead to code execution (CVE-2015-8445). * These updates resolve a buffer overflow vulnerability that could lead to code execution (CVE-2015-8415) * These updates resolve use-after-free vulnerabilities that could lead to code execution (CVE-2015-8050, CVE-2015-8049, CVE-2015-8437, CVE-2015-8450, CVE-2015-8449, CVE-2015-8448, CVE-2015-8436, CVE-2015-8452, CVE-2015-8048, CVE-2015-8413, CVE-2015-8412, CVE-2015-8410, CVE-2015-8411, CVE-2015-8424, CVE-2015-8422, CVE-2015-8420, CVE-2015-8421, CVE-2015-8423, CVE-2015-8425, CVE-2015-8433, CVE-2015-8432, CVE-2015-8431, CVE-2015-8426, CVE-2015-8430, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8434, CVE-2015-8435, CVE-2015-8414, CVE-2015-8454, CVE-2015-8059, CVE-2015-8058, CVE-2015-8055, CVE-2015-8057, CVE-2015-8056, CVE-2015-8061, CVE-2015-8067, CVE-2015-8066, CVE-2015-8062, CVE-2015-8068, CVE-2015-8064, CVE-2015-8065, CVE-2015-8063, CVE-2015-8405, CVE-2015-8404, CVE-2015-8402, CVE-2015-8403, CVE-2015-8071, CVE-2015-8401, CVE-2015-8406, CVE-2015-8069, CVE-2015-8070, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447). Please also see https://helpx.adobe.com/security/products/flash-player/apsb15-32.html flash-player-11.2.202.554-2.82.1.i586.rpm flash-player-11.2.202.554-2.82.1.nosrc.rpm flash-player-gnome-11.2.202.554-2.82.1.i586.rpm flash-player-kde4-11.2.202.554-2.82.1.i586.rpm flash-player-11.2.202.554-2.82.1.x86_64.rpm flash-player-gnome-11.2.202.554-2.82.1.x86_64.rpm flash-player-kde4-11.2.202.554-2.82.1.x86_64.rpm openSUSE-2015-975 important openSUSE 13.2 NonFree Update This update for flash-player fixes the following issues: - Security update to 11.2.202.559 (boo#960317): * APSB16-01, CVE-2015-8459, CVE-2015-8460, CVE-2015-8634, CVE-2015-8635, CVE-2015-8636, CVE-2015-8638, CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, CVE-2015-8642, CVE-2015-8643, CVE-2015-8644, CVE-2015-8645, CVE-2015-8646, CVE-2015-8647, CVE-2015-8648, CVE-2015-8649, CVE-2015-8650, CVE-2015-8651 flash-player-11.2.202.559-2.85.1.i586.rpm flash-player-11.2.202.559-2.85.1.nosrc.rpm flash-player-gnome-11.2.202.559-2.85.1.i586.rpm flash-player-kde4-11.2.202.559-2.85.1.i586.rpm flash-player-11.2.202.559-2.85.1.x86_64.rpm flash-player-gnome-11.2.202.559-2.85.1.x86_64.rpm flash-player-kde4-11.2.202.559-2.85.1.x86_64.rpm openSUSE-2016-183 important openSUSE 13.2 NonFree Update This update for flash-player fixes the following issues: - Security update to 11.2.202.569 (boo#965901): * APSB16-04, CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0971, CVE-2016-0972, CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, CVE-2016-0981, CVE-2016-0982, CVE-2016-0983, CVE-2016-0984, CVE-2016-0985 flash-player-11.2.202.569-2.88.1.i586.rpm flash-player-11.2.202.569-2.88.1.nosrc.rpm flash-player-gnome-11.2.202.569-2.88.1.i586.rpm flash-player-kde4-11.2.202.569-2.88.1.i586.rpm flash-player-11.2.202.569-2.88.1.x86_64.rpm flash-player-gnome-11.2.202.569-2.88.1.x86_64.rpm flash-player-kde4-11.2.202.569-2.88.1.x86_64.rpm openSUSE-2016-325 important openSUSE 13.2 NonFree Update This update to Adobe Flash Player 11.2.202.577 fixes a number of vulnerabilities that could have allowed remote attackers to execute arbitrary code through crafted content. (boo#970547) * APSB16-08, CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0986, CVE-2016-0987, CVE-2016-0988, CVE-2016-0989, CVE-2016-0990, CVE-2016-0991, CVE-2016-0992, CVE-2016-0993, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996, CVE-2016-0997, CVE-2016-0998, CVE-2016-0999, CVE-2016-1000, CVE-2016-1001, CVE-2016-1002, CVE-2016-1005, CVE-2016-1010 flash-player-11.2.202.577-2.91.1.i586.rpm flash-player-11.2.202.577-2.91.1.nosrc.rpm flash-player-gnome-11.2.202.577-2.91.1.i586.rpm flash-player-kde4-11.2.202.577-2.91.1.i586.rpm flash-player-11.2.202.577-2.91.1.x86_64.rpm flash-player-gnome-11.2.202.577-2.91.1.x86_64.rpm flash-player-kde4-11.2.202.577-2.91.1.x86_64.rpm openSUSE-2016-436 moderate openSUSE 13.2 NonFree Update This recommended update for Mesa fixes the following issues: - Backported 53cbb117 from Mesa 11.1.0, which fixes a crash in Nouveau. - Add separate definition GLAPIVAR as GLAPI doesn't have the an 'extern' for some compiler versions. This is needed for GLw (bsc#970725). libGLw-8.0.0-6.1.src.rpm libGLw-debugsource-8.0.0-6.1.i586.rpm libGLw-devel-8.0.0-6.1.i586.rpm libGLw1-32bit-8.0.0-6.1.x86_64.rpm libGLw1-8.0.0-6.1.i586.rpm libGLw1-debuginfo-32bit-8.0.0-6.1.x86_64.rpm libGLw1-debuginfo-8.0.0-6.1.i586.rpm libGLwM1-32bit-8.0.0-6.1.x86_64.rpm libGLwM1-8.0.0-6.1.i586.rpm libGLwM1-debuginfo-32bit-8.0.0-6.1.x86_64.rpm libGLwM1-debuginfo-8.0.0-6.1.i586.rpm libGLw-debugsource-8.0.0-6.1.x86_64.rpm libGLw-devel-8.0.0-6.1.x86_64.rpm libGLw1-8.0.0-6.1.x86_64.rpm libGLw1-debuginfo-8.0.0-6.1.x86_64.rpm libGLwM1-8.0.0-6.1.x86_64.rpm libGLwM1-debuginfo-8.0.0-6.1.x86_64.rpm openSUSE-2016-433 important openSUSE 13.2 NonFree Update flash-player was updated to fix one security issue. This security issue was fixed: - CVE-2016-1019: Adobe Flash Player earlier allowed remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016 Aliased: (bsc#974209). flash-player-11.2.202.616-2.94.1.i586.rpm flash-player-11.2.202.616-2.94.1.nosrc.rpm flash-player-gnome-11.2.202.616-2.94.1.i586.rpm flash-player-kde4-11.2.202.616-2.94.1.i586.rpm flash-player-11.2.202.616-2.94.1.x86_64.rpm flash-player-gnome-11.2.202.616-2.94.1.x86_64.rpm flash-player-kde4-11.2.202.616-2.94.1.x86_64.rpm openSUSE-2016-585 important openSUSE 13.2 NonFree Update This security update for flash-player to 11.2.202.621 fixes the following issues (boo#979422): A critical vulnerability (CVE-2016-4117) exists in Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. (APSA16-02) https://helpx.adobe.com/security/products/flash-player/apsa16-02.html Some CVEs were not listed in the last submission: * APSA16-01, APSB16-10, CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013, CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017, CVE-2016-1018, CVE-2016-1019, CVE-2016-1020, CVE-2016-1021, CVE-2016-1022, CVE-2016-1023, CVE-2016-1024, CVE-2016-1025, CVE-2016-1026, CVE-2016-1027, CVE-2016-1028, CVE-2016-1029, CVE-2016-1030, CVE-2016-1031, CVE-2016-1032, CVE-2016-1033 flash-player-11.2.202.621-2.97.1.i586.rpm flash-player-11.2.202.621-2.97.1.nosrc.rpm flash-player-gnome-11.2.202.621-2.97.1.i586.rpm flash-player-kde4-11.2.202.621-2.97.1.i586.rpm flash-player-11.2.202.621-2.97.1.x86_64.rpm flash-player-gnome-11.2.202.621-2.97.1.x86_64.rpm flash-player-kde4-11.2.202.621-2.97.1.x86_64.rpm openSUSE-2016-740 critical openSUSE 13.2 NonFree Update Adobe flash-player was updated to 11.2.202.626 to fix the following security issues: Security update to 11.2.202.626 (boo#984695): * APSB16-18, CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4135, CVE-2016-4136, CVE-2016-4137, CVE-2016-4138, CVE-2016-4139, CVE-2016-4140, CVE-2016-4141, CVE-2016-4142, CVE-2016-4143, CVE-2016-4144, CVE-2016-4145, CVE-2016-4146, CVE-2016-4147, CVE-2016-4148, CVE-2016-4149, CVE-2016-4150, CVE-2016-4151, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154, CVE-2016-4155, CVE-2016-4156, CVE-2016-4166, CVE-2016-4171 Please see https://helpx.adobe.com/security/products/flash-player/apsb16-18.html for more information. flash-player-11.2.202.626-2.100.1.i586.rpm flash-player-11.2.202.626-2.100.1.nosrc.rpm flash-player-gnome-11.2.202.626-2.100.1.i586.rpm flash-player-kde4-11.2.202.626-2.100.1.i586.rpm flash-player-11.2.202.626-2.100.1.x86_64.rpm flash-player-gnome-11.2.202.626-2.100.1.x86_64.rpm flash-player-kde4-11.2.202.626-2.100.1.x86_64.rpm openSUSE-2016-866 important openSUSE 13.2 NonFree Update Adobe Flash Player was updated to 11.2.202.632 to fix many security issues tracked under the upstream advisory APSB16-25, allowing remote attackers to execute arbitrary code when delivering specially crafted Flash content. The following vulnerabilities were fixed: - CVE-2016-4172: memory corruption vulnerability that could lead to code execution - CVE-2016-4173: use-after-free vulnerability that could lead to code execution - CVE-2016-4174: use-after-free vulnerability that could lead to code execution - CVE-2016-4175: memory corruption vulnerability that could lead to code execution - CVE-2016-4176: stack corruption vulnerability that could lead to code execution - CVE-2016-4177: stack corruption vulnerability that could lead to code execution - CVE-2016-4178: security bypass vulnerability that could lead to information disclosure - CVE-2016-4179: memory corruption vulnerability that could lead to code execution - CVE-2016-4180: memory corruption vulnerability that could lead to code execution - CVE-2016-4181: memory corruption vulnerability that could lead to code execution - CVE-2016-4182: memory corruption vulnerability that could lead to code execution - CVE-2016-4183: memory corruption vulnerability that could lead to code execution - CVE-2016-4184: memory corruption vulnerability that could lead to code execution - CVE-2016-4185: memory corruption vulnerability that could lead to code execution - CVE-2016-4186: memory corruption vulnerability that could lead to code execution - CVE-2016-4187: memory corruption vulnerability that could lead to code execution - CVE-2016-4188: memory corruption vulnerability that could lead to code execution - CVE-2016-4189: memory corruption vulnerability that could lead to code execution - CVE-2016-4190: memory corruption vulnerability that could lead to code execution - CVE-2016-4217: memory corruption vulnerability that could lead to code execution - CVE-2016-4218: memory corruption vulnerability that could lead to code execution - CVE-2016-4219: memory corruption vulnerability that could lead to code execution - CVE-2016-4220: memory corruption vulnerability that could lead to code execution - CVE-2016-4221: memory corruption vulnerability that could lead to code execution - CVE-2016-4222: use-after-free vulnerability that could lead to code execution - CVE-2016-4223: type confusion vulnerability that could lead to code execution - CVE-2016-4224: type confusion vulnerability that could lead to code execution - CVE-2016-4225: type confusion vulnerability that could lead to code execution - CVE-2016-4226: use-after-free vulnerability that could lead to code execution - CVE-2016-4227: use-after-free vulnerability that could lead to code execution - CVE-2016-4228: use-after-free vulnerability that could lead to code execution - CVE-2016-4229: use-after-free vulnerability that could lead to code execution - CVE-2016-4230: use-after-free vulnerability that could lead to code execution - CVE-2016-4231: use-after-free vulnerability that could lead to code execution - CVE-2016-4232: memory leak vulnerability - CVE-2016-4233: memory corruption vulnerability that could lead to code execution - CVE-2016-4234: memory corruption vulnerability that could lead to code execution - CVE-2016-4235: memory corruption vulnerability that could lead to code execution - CVE-2016-4236: memory corruption vulnerability that could lead to code execution - CVE-2016-4237: memory corruption vulnerability that could lead to code execution - CVE-2016-4238: memory corruption vulnerability that could lead to code execution - CVE-2016-4239: memory corruption vulnerability that could lead to code execution - CVE-2016-4240: memory corruption vulnerability that could lead to code execution - CVE-2016-4241: memory corruption vulnerability that could lead to code execution - CVE-2016-4242: memory corruption vulnerability that could lead to code execution - CVE-2016-4243: memory corruption vulnerability that could lead to code execution - CVE-2016-4244: memory corruption vulnerability that could lead to code execution - CVE-2016-4245: memory corruption vulnerability that could lead to code execution - CVE-2016-4246: memory corruption vulnerability that could lead to code execution - CVE-2016-4247: race condition vulnerability that could lead to information disclosure - CVE-2016-4248: use-after-free vulnerability that could lead to code execution - CVE-2016-4249: heap buffer overflow vulnerability that could lead to code execution flash-player-11.2.202.632-2.103.1.i586.rpm flash-player-11.2.202.632-2.103.1.nosrc.rpm flash-player-gnome-11.2.202.632-2.103.1.i586.rpm flash-player-kde4-11.2.202.632-2.103.1.i586.rpm flash-player-11.2.202.632-2.103.1.x86_64.rpm flash-player-gnome-11.2.202.632-2.103.1.x86_64.rpm flash-player-kde4-11.2.202.632-2.103.1.x86_64.rpm openSUSE-2016-1083 important openSUSE 13.2 NonFree Update This update for flash-player fixes the following security issues (APSB16-29, boo#998589): * integer overflow vulnerability that could lead to code execution (CVE-2016-4287). * use-after-free vulnerabilities that could lead to code execution (CVE-2016-4272, CVE-2016-4279, CVE-2016-6921, CVE-2016-6923, CVE-2016-6925, CVE-2016-6926, CVE-2016-6927, CVE-2016-6929, CVE-2016-6930, CVE-2016-6931, CVE-2016-6932) * security bypass vulnerabilities that could lead to information disclosure (CVE-2016-4271, CVE-2016-4277, CVE-2016-4278) * memory corruption vulnerabilities that could lead to code execution (CVE-2016-4182, CVE-2016-4237, CVE-2016-4238, CVE-2016-4274, CVE-2016-4275, CVE-2016-4276, CVE-2016-4280, CVE-2016-4281, CVE-2016-4282, CVE-2016-4283, CVE-2016-4284, CVE-2016-4285, CVE-2016-6922, CVE-2016-6924) The package description was update to reflex that the stand-alone Flash is no longer provided on x86_64 architectures (boo#977664). flash-player-11.2.202.635-2.108.1.i586.rpm flash-player-11.2.202.635-2.108.1.nosrc.rpm flash-player-gnome-11.2.202.635-2.108.1.i586.rpm flash-player-kde4-11.2.202.635-2.108.1.i586.rpm flash-player-11.2.202.635-2.108.1.x86_64.rpm flash-player-gnome-11.2.202.635-2.108.1.x86_64.rpm flash-player-kde4-11.2.202.635-2.108.1.x86_64.rpm openSUSE-2016-1179 moderate openSUSE 13.2 NonFree Update This update for flash-player fixes the following security issues: - CVE-2016-4273: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-4286: Unspecified security bypass vulnerability - CVE-2016-6981: Unspecified use-after-free vulnerability that could lead to code execution - CVE-2016-6982: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6983: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6984: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6985: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6986: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6987: Unspecified use-after-free vulnerability that could lead to code execution - CVE-2016-6989: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6990: Unspecified memory corruption vulnerability that could lead to code execution - CVE-2016-6992: Unspecified type confusion vulnerability that could lead to code execution The EULA was updated to version 23.0 (boo#1003993). flash-player-11.2.202.637-2.112.1.i586.rpm flash-player-11.2.202.637-2.112.1.nosrc.rpm flash-player-gnome-11.2.202.637-2.112.1.i586.rpm flash-player-kde4-11.2.202.637-2.112.1.i586.rpm flash-player-11.2.202.637-2.112.1.x86_64.rpm flash-player-gnome-11.2.202.637-2.112.1.x86_64.rpm flash-player-kde4-11.2.202.637-2.112.1.x86_64.rpm openSUSE-2016-1239 important openSUSE 13.2 NonFree Update This update for Adobe Flash Player to 11.2.202.643 fixes the following vulnerability: - CVE-2016-7855: use-after-free vulnerability (APSB16-36, boo#1007098) flash-player-11.2.202.643-2.115.1.i586.rpm flash-player-11.2.202.643-2.115.1.nosrc.rpm flash-player-gnome-11.2.202.643-2.115.1.i586.rpm flash-player-kde4-11.2.202.643-2.115.1.i586.rpm flash-player-11.2.202.643-2.115.1.x86_64.rpm flash-player-gnome-11.2.202.643-2.115.1.x86_64.rpm flash-player-kde4-11.2.202.643-2.115.1.x86_64.rpm openSUSE-2016-1285 important openSUSE 13.2 NonFree Update This update to Adobe Flash Player 11.2.202.644 fixes the following security issues: - type confusion vulnerabilities that could lead to code execution (CVE-2016-7860, CVE-2016-7861, CVE-2016-7865) - use-after-free vulnerabilities that could lead to code execution (CVE-2016-7857, CVE-2016-7858, CVE-2016-7859, CVE-2016-7862, CVE-2016-7863, CVE-2016-7864) flash-player-11.2.202.644-2.118.1.i586.rpm flash-player-11.2.202.644-2.118.1.nosrc.rpm flash-player-gnome-11.2.202.644-2.118.1.i586.rpm flash-player-kde4-11.2.202.644-2.118.1.i586.rpm flash-player-11.2.202.644-2.118.1.x86_64.rpm flash-player-gnome-11.2.202.644-2.118.1.x86_64.rpm flash-player-kde4-11.2.202.644-2.118.1.x86_64.rpm openSUSE-2016-1484 moderate openSUSE 13.2 NonFree Update This update for flash-player fixes the following issues: - Security update to 24.0.0.186 (bsc#1015379) APSB16-39: * These updates resolve use-after-free vulnerabilities that could have lead to code execution (CVE-2016-7872, CVE-2016-7877, CVE-2016-7878, CVE-2016-7879, CVE-2016-7880, CVE-2016-7881, CVE-2016-7892). * These updates resolve buffer overflow vulnerabilities that could have lead to code execution (CVE-2016-7867, CVE-2016-7868, CVE-2016-7869, CVE-2016-7870). * These updates resolve memory corruption vulnerabilities that could have lead to code execution (CVE-2016-7871, CVE-2016-7873, CVE-2016-7874, CVE-2016-7875, CVE-2016-7876). * These updates resolve a security bypass vulnerability (CVE-2016-7890). - Update EULA to version 24.0. flash-player-24.0.0.186-2.121.1.i586.rpm flash-player-24.0.0.186-2.121.1.nosrc.rpm flash-player-gnome-24.0.0.186-2.121.1.i586.rpm flash-player-kde4-24.0.0.186-2.121.1.i586.rpm flash-player-24.0.0.186-2.121.1.x86_64.rpm flash-player-gnome-24.0.0.186-2.121.1.x86_64.rpm flash-player-kde4-24.0.0.186-2.121.1.x86_64.rpm openSUSE-2017-71 important openSUSE 13.2 NonFree Update This update to Adobe Flash 24.0.0.194 fixes the following vulnerabilities advised under APSB17-02: - security bypass vulnerability that could lead to information disclosure (CVE-2017-2938) - use-after-free vulnerabilities that could lead to code execution (CVE-2017-2932, CVE-2017-2936, CVE-2017-2937) - heap buffer overflow vulnerabilities that could lead to code execution (CVE-2017-2927, CVE-2017-2933, CVE-2017-2934, CVE-2017-2935) - memory corruption vulnerabilities that could lead to code execution (CVE-2017-2925, CVE-2017-2926, CVE-2017-2928, CVE-2017-2930, CVE-2017-2931) flash-player-24.0.0.194-2.124.1.i586.rpm flash-player-24.0.0.194-2.124.1.src.rpm flash-player-gnome-24.0.0.194-2.124.1.i586.rpm flash-player-kde4-24.0.0.194-2.124.1.i586.rpm flash-player-24.0.0.194-2.124.1.x86_64.rpm flash-player-gnome-24.0.0.194-2.124.1.x86_64.rpm flash-player-kde4-24.0.0.194-2.124.1.x86_64.rpm