Date: Mon, 2 Feb 2015 14:53:57 +0000 (UTC) From: Johannes Jost Meixner <xmj@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r378306 - head/security/vuxml Message-ID: <201502021453.t12Ervjq011737@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: xmj Date: Mon Feb 2 14:53:56 2015 New Revision: 378306 URL: https://svnweb.freebsd.org/changeset/ports/378306 QAT: https://qat.redports.org/buildarchive/r378306/ Log: www/linux-*-flashplugin11: Add CVE-2015-0313 Spotted by: kwm Approved by: swills (mentor) Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Mon Feb 2 14:34:20 2015 (r378305) +++ head/security/vuxml/vuln.xml Mon Feb 2 14:53:56 2015 (r378306) @@ -57,6 +57,42 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="734bcd49-aae6-11e4-a0c1-c485083ca99c"> + <topic>Adobe Flash Player -- critical vulnerability</topic> + <affects> + <package> + <name>linux-c6-flashplugin11</name> + <range><le>11.2r202.440</le></range> + </package> + <package> + <name>linux-f10-flashplugin11</name> + <range><le>11.2r202.440</le></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Adobe reports:</p> + <blockquote cite="https://helpx.adobe.com/security/products/flash-player/apsa15-02.html"> + <p>A critical vulnerability (CVE-2015-0313) exists in Adobe Flash + Player 16.0.0.296 and earlier versions for Windows, Macintosh, and + Linux. Successful exploitation could cause a crash and potentially + allow an attacker to take control of the affected system. We are + aware of reports that this vulnerability is being actively exploited + in the wild via drive-by-download attacks against systems running + Internet Explorer and Firefox on Windows 8.1 and below. </p> + </blockquote> + </body> + </description> + <references> + <url>https://helpx.adobe.com/security/products/flash-player/apsa15-02.html</url> + <cvename>CVE-2015-0313</cvename> + </references> + <dates> + <discovery>2015-02-02</discovery> + <entry>2015-02-02</entry> + </dates> + </vuln> + <vuln vid="8469d41c-a960-11e4-b18e-bcaec55be5e5"> <topic>rabbitmq -- Security issues in management plugin</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201502021453.t12Ervjq011737>