Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors.
Weakness
The product calls free() twice on the same memory address.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flash_player | Adobe | * | 11.2.202.438 (including) |
| Red Hat Enterprise Linux 5 Supplementary | RedHat | flash-plugin-0:11.2.202.440-1.el5 | * |
| Supplementary for Red Hat Enterprise Linux 6 | RedHat | flash-plugin-0:11.2.202.440-1.el6 | * |
| Adobe-flashplugin | Ubuntu | lucid | * |
| Adobe-flashplugin | Ubuntu | precise | * |
| Adobe-flashplugin | Ubuntu | trusty | * |
| Adobe-flashplugin | Ubuntu | upstream | * |
| Adobe-flashplugin | Ubuntu | utopic | * |
| Flashplugin-nonfree | Ubuntu | devel | * |
| Flashplugin-nonfree | Ubuntu | lucid | * |
| Flashplugin-nonfree | Ubuntu | precise | * |
| Flashplugin-nonfree | Ubuntu | trusty | * |
| Flashplugin-nonfree | Ubuntu | upstream | * |
| Flashplugin-nonfree | Ubuntu | utopic | * |
Potential Mitigations
References
- http://helpx.adobe.com/security/products/flash-player/apsb15-03.html
- http://secunia.com/advisories/62432
- http://secunia.com/advisories/62543
- http://secunia.com/advisories/62660
- http://www.securityfocus.com/bid/72343
- http://www.securitytracker.com/id/1031634
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100394
- https://technet.microsoft.com/library/security/2755801
- http://helpx.adobe.com/security/products/flash-player/apsb15-03.html
- http://secunia.com/advisories/62432
- http://secunia.com/advisories/62543
- http://secunia.com/advisories/62660
- http://www.securityfocus.com/bid/72343
- http://www.securitytracker.com/id/1031634
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100394
- https://technet.microsoft.com/library/security/2755801