Security update for flash-player SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:0412-1 Final 1 1 2016-02-10T17:20:52Z current 2016-02-10T17:20:52Z 2016-02-10T17:20:52Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for flash-player This update for flash-player fixes the following issues: - Security update to 11.2.202.569 (boo#965901): * APSB16-04, CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0971, CVE-2016-0972, CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, CVE-2016-0981, CVE-2016-0982, CVE-2016-0983, CVE-2016-0984, CVE-2016-0985 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html E-Mail link for openSUSE-SU-2016:0412-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 NonFree flash-player-11.2.202.569-2.88.1 flash-player-gnome-11.2.202.569-2.88.1 flash-player-kde4-11.2.202.569-2.88.1 flash-player-11.2.202.569-2.88.1 as a component of openSUSE 13.2 NonFree flash-player-gnome-11.2.202.569-2.88.1 as a component of openSUSE 13.2 NonFree flash-player-kde4-11.2.202.569-2.88.1 as a component of openSUSE 13.2 NonFree Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0964 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0964.html CVE-2016-0964 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0965 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0965.html CVE-2016-0965 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0966 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0966.html CVE-2016-0966 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0967 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0967.html CVE-2016-0967 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0968 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0968.html CVE-2016-0968 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0969 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0969.html CVE-2016-0969 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0970 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0970.html CVE-2016-0970 https://bugzilla.suse.com/965901 SUSE Bug 965901 Heap-based buffer overflow in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via unspecified vectors. CVE-2016-0971 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0971.html CVE-2016-0971 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0972 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0972.html CVE-2016-0972 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in the URLRequest object implementation in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via a URLLoader.load call, a different vulnerability than CVE-2016-0974, CVE-2016-0975, CVE-2016-0982, CVE-2016-0983, and CVE-2016-0984. CVE-2016-0973 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0973.html CVE-2016-0973 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0973, CVE-2016-0975, CVE-2016-0982, CVE-2016-0983, and CVE-2016-0984. CVE-2016-0974 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0974.html CVE-2016-0974 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in the instanceof function in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code by leveraging improper reference handling, a different vulnerability than CVE-2016-0973, CVE-2016-0974, CVE-2016-0982, CVE-2016-0983, and CVE-2016-0984. CVE-2016-0975 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0975.html CVE-2016-0975 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0976 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0976.html CVE-2016-0976 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0977 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0977.html CVE-2016-0977 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0978 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0978.html CVE-2016-0978 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0980, and CVE-2016-0981. CVE-2016-0979 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0979.html CVE-2016-0979 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, and CVE-2016-0981. CVE-2016-0980 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0980.html CVE-2016-0980 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, and CVE-2016-0980. CVE-2016-0981 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0981.html CVE-2016-0981 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0983, and CVE-2016-0984. CVE-2016-0982 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0982.html CVE-2016-0982 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0982, and CVE-2016-0984. CVE-2016-0983 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0983.html CVE-2016-0983 https://bugzilla.suse.com/965901 SUSE Bug 965901 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0982, and CVE-2016-0983. CVE-2016-0984 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0984.html CVE-2016-0984 https://bugzilla.suse.com/965901 SUSE Bug 965901 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion." CVE-2016-0985 openSUSE 13.2 NonFree:flash-player-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.569-2.88.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.569-2.88.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00029.html https://www.suse.com/security/cve/CVE-2016-0985.html CVE-2016-0985 https://bugzilla.suse.com/965901 SUSE Bug 965901