Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-2040 at MITRE


Untrusted search path vulnerability in the installer in Adobe Flash Player before and 11.x before 11.3.300.257 on Windows and Mac OS X; before and 11.x before on Linux; before on Android 2.x and 3.x; and before on Android 4.x, and Adobe AIR before, allows local users to gain privileges via a Trojan horse executable file in an unspecified directory.

NVD CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)

SUSE information

SUSE Bugzilla entry: 766241 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
  • flash-player >=
ZYPP Patch Nr: 8182
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Desktop 11 SP2
  • flash-player >=
SAT Patch Nr: 6404
openSUSE 11.4
  • flash-player >=
  • flash-player-gnome >=
  • flash-player-kde4 >=