{"id":"MGASA-2017-0143","summary":"Updated flash-player-plugin packages fix security vulnerability","details":"Adobe Flash Player 25.0.0.171 contains fixes to critical security\nvulnerabilities found in earlier versions that could potentially allow an\nattacker to take control of the affected system.\n\nThis updates resolves a use-after-free vulnerability that could lead to\ncode execution (CVE-2017-3071).\n\nThis updates resolves memory corruption vulnerabilities that could lead to\ncode execution (CVE-2017-3068, CVE-2017-3069, CVE-2017-3070,\nCVE-2017-3072, CVE-2017-3073, CVE-2017-3074).\n","modified":"2026-04-16T06:22:38.105548288Z","published":"2017-05-21T20:28:59Z","upstream":["CVE-2017-3068","CVE-2017-3069","CVE-2017-3070","CVE-2017-3071","CVE-2017-3072","CVE-2017-3073","CVE-2017-3074"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0143.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=20818"},{"type":"WEB","url":"https://helpx.adobe.com/security/products/flash-player/apsb17-15.html"}],"affected":[{"package":{"name":"flash-player-plugin","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/flash-player-plugin?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"25.0.0.171-1.mga5.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0143.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}