Red.Hat.Update.for.flash-plugin.RHSA-2014-0137

description-logoDescription

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.
The update has fixed the following vulnerability:
Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors. (CVE-2014-0497)

affected-products-logoAffected Products

RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)
Red Hat Enterprise Linux Desktop Supplementary (v. 6)
Red Hat Enterprise Linux Server Supplementary (v. 6)
Red Hat Enterprise Linux Server Supplementary AUS (v. 6.5)
Red Hat Enterprise Linux Server Supplementary EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation Supplementary (v. 6)

Impact logoImpact

The vulnerable system can be compromised by a remote attacker to retrieve content or modify application setting on the system. Therefore there is a risk of creating a denial of service scenario, exposing sensitive information or executing arbitrary code.

recomended-action-logoRecommended Actions

Please download and apply patches as instructed in: http://rhn.redhat.com/errata/RHSA-2014-0137.html .

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)