{"id":"MGASA-2017-0075","summary":"Updated flash-player-plugin packages fix security vulnerability","details":"flash-player-plugin update fixes the following issues:\n* A type confusion vulnerability that could lead to code execution\n  (CVE-2017-2995).\n* An integer overflow vulnerability that could lead to code execution\n  (CVE-2017-2987).\n* Use-after-free vulnerabilities that could lead to code execution\n  (CVE-2017-2982, CVE-2017-2985, CVE-2017-2993, CVE-2017-2994).\n* Heap buffer overflow vulnerabilities that could lead to code execution\n  (CVE-2017- 2984, CVE-2017-2986, CVE-2017-2992).\n* Memory corruption vulnerabilities that could lead to code execution\n  (CVE-2017-2988, CVE-2017-2990, CVE-2017-2991, CVE-2017-2996).\n","modified":"2026-04-16T06:23:13.883381234Z","published":"2017-03-12T20:33:36Z","upstream":["CVE-2017-2982","CVE-2017-2984","CVE-2017-2985","CVE-2017-2986","CVE-2017-2987","CVE-2017-2988","CVE-2017-2990","CVE-2017-2991","CVE-2017-2992","CVE-2017-2993","CVE-2017-2994","CVE-2017-2995","CVE-2017-2996"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0075.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=20293"},{"type":"WEB","url":"https://helpx.adobe.com/security/products/flash-player/apsb17-04.html"}],"affected":[{"package":{"name":"flash-player-plugin","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"24.0.0.221-1.mga5.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0075.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}