openSUSE-SU-2012:0265-1 -- Suse flash-player
|ID: oval:org.secpod.oval:def:400432||Date: (C)2012-12-31 (M)2018-06-09|
|Class: PATCH||Family: unix|
flash-player was updated to the security update to 22.214.171.124. It fixes lots of security issues, some already exploited in the wild. Details can be found on: https://www.adobe.com/support/security/bulletins/apsb12-03.h tml These vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system. This update also resolves a universal cross-site scripting vulnerability that could be used to take actions on a user"s behalf on any website or webmail provider, if the user visits a malicious website. There are reports that this vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious link delivered in an email message .