Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2.202.258 on Linux, before 11.1.111.29 on Android 2.x and 3.x, and before 11.1.115.34 on Android 4.x; Adobe AIR before 3.5.0.880 on Windows and before 3.5.0.890 on Mac OS X; and Adobe AIR SDK before 3.5.0.880 on Windows and before 3.5.0.890 on Mac OS X allows attackers to execute arbitrary code via unspecified vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flash_player | Adobe | 10.3 (including) | 10.3.183.48 (excluding) |
| Flash_player | Adobe | 11.5 (including) | 11.5.502.135 (excluding) |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | flash-plugin-0:11.2.202.258-1.el5 | * |
| Supplementary for Red Hat Enterprise Linux 6 | RedHat | flash-plugin-0:11.2.202.258-1.el6 | * |
| Adobe-flashplugin | Ubuntu | hardy | * |
| Adobe-flashplugin | Ubuntu | lucid | * |
| Adobe-flashplugin | Ubuntu | oneiric | * |
| Adobe-flashplugin | Ubuntu | precise | * |
| Adobe-flashplugin | Ubuntu | quantal | * |
| Adobe-flashplugin | Ubuntu | upstream | * |
| Flashplugin-nonfree | Ubuntu | devel | * |
| Flashplugin-nonfree | Ubuntu | hardy | * |
| Flashplugin-nonfree | Ubuntu | lucid | * |
| Flashplugin-nonfree | Ubuntu | oneiric | * |
| Flashplugin-nonfree | Ubuntu | precise | * |
| Flashplugin-nonfree | Ubuntu | quantal | * |
References
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00014.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00033.html
- http://www.adobe.com/support/security/bulletins/apsb12-27.html
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00014.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00033.html
- http://www.adobe.com/support/security/bulletins/apsb12-27.html