DescriptionAdobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 184.108.40.206 on Windows and Mac OS X and before 220.127.116.111 on Linux, Adobe AIR before 18.104.22.1688 on Android, Adobe AIR SDK before 22.214.171.1248, and Adobe AIR SDK & Compiler before 126.96.36.1998 do not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
- SUSE-SU-2014:0290-1, published Tue, 25 Feb 2014 20:04:15 +0100 (CET)
- openSUSE-SU-2014:0277-1, published Mon, 24 Feb 2014 08:04:11 +0100 (CET)
- openSUSE-SU-2014:0278-1, published Mon, 24 Feb 2014 11:04:11 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE Linux Enterprise Desktop 11 SP3|| ||Patchnames: |
|SUSE Linux Enterprise Desktop 12 SP1 |
SUSE Linux Enterprise Workstation Extension 12 SP1
|SUSE Linux Enterprise Desktop 12 |
SUSE Linux Enterprise Workstation Extension 12
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.
|SUSE Linux Enterprise Desktop 11 SP3||flash-player||Released|