ALT-PU-2014-2389-1

Package update adobe-flash-player in branch p7

Version11-alt36

Published2014-11-26

Max severityCRITICAL

Severity:

Closed issues (2)

CRITICAL9.8

Уязвимость программных платформ Adobe Flash Player, Adobe Integrated Runtime (AIR), Adobe AIR SDK и Adobe AIR SDK & Compiler, связанная с выходом операции за границы буфера, позволяющая нарушителю выполнить произвольный код или вызывать отказ в обслуживании

Published: 2021-10-13Modified: 2024-09-24

CVSS 3.xCRITICAL 9.8

CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

HIGH8.8

Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before 15.0.0.239 on Windows and OS X and before 11.2.202.424 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) via unspecified vectors.

Published: 2014-11-25Modified: 2026-04-21

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xHIGH 8.8

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References