rpm package

suse/flash-player&distro=SUSE Linux Enterprise Desktop 12 SP1

pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1

Vulnerabilities (389)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2016-7869	Hig	8.8		< 24.0.0.186-152.1	24.0.0.186-152.1	Dec 15, 2016	Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7868	Hig	8.8		< 24.0.0.186-152.1	24.0.0.186-152.1	Dec 15, 2016	Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7867	Hig	8.8		< 24.0.0.186-152.1	24.0.0.186-152.1	Dec 15, 2016	Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7865	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7864	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7863	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7862	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7861	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7860	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7859	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7858	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7857	Hig	8.8		< 11.2.202.644-149.1	11.2.202.644-149.1	Nov 8, 2016	Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7855	Hig	8.8	KEV	< 11.2.202.643-146.1	11.2.202.643-146.1	Nov 1, 2016	Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
CVE-2016-6992	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."
CVE-2016-6990	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6989	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6987	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6981.
CVE-2016-6986	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6985	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6984	Hig	8.8		< 11.2.202.637-143.1	11.2.202.637-143.1	Oct 13, 2016	Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV

CVE-2016-7869HigDec 15, 2016
affected < 24.0.0.186-152.1fixed 24.0.0.186-152.1
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7868HigDec 15, 2016
affected < 24.0.0.186-152.1fixed 24.0.0.186-152.1
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7867HigDec 15, 2016
affected < 24.0.0.186-152.1fixed 24.0.0.186-152.1
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7865HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7864HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7863HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7862HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7861HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7860HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7859HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7858HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7857HigNov 8, 2016
affected < 11.2.202.644-149.1fixed 11.2.202.644-149.1
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2016-7855HigKEVNov 1, 2016
affected < 11.2.202.643-146.1fixed 11.2.202.643-146.1
Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
CVE-2016-6992HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."
CVE-2016-6990HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6989HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6987HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6981.
CVE-2016-6986HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6985HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV
CVE-2016-6984HigOct 13, 2016
affected < 11.2.202.637-143.1fixed 11.2.202.637-143.1
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CV

Page 4 of 20