Security update for flash-player SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:1795-1 Final 1 1 2016-07-13T16:47:20Z current 2016-07-13T16:47:20Z 2016-07-13T16:47:20Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for flash-player Adobe Flash Player was updated to 11.2.202.632 to fix many security issues tracked under the upstream advisory APSB16-25, allowing remote attackers to execute arbitrary code when delivering specially crafted Flash content. The following vulnerabilities were fixed: - CVE-2016-4172: memory corruption vulnerability that could lead to code execution - CVE-2016-4173: use-after-free vulnerability that could lead to code execution - CVE-2016-4174: use-after-free vulnerability that could lead to code execution - CVE-2016-4175: memory corruption vulnerability that could lead to code execution - CVE-2016-4176: stack corruption vulnerability that could lead to code execution - CVE-2016-4177: stack corruption vulnerability that could lead to code execution - CVE-2016-4178: security bypass vulnerability that could lead to information disclosure - CVE-2016-4179: memory corruption vulnerability that could lead to code execution - CVE-2016-4180: memory corruption vulnerability that could lead to code execution - CVE-2016-4181: memory corruption vulnerability that could lead to code execution - CVE-2016-4182: memory corruption vulnerability that could lead to code execution - CVE-2016-4183: memory corruption vulnerability that could lead to code execution - CVE-2016-4184: memory corruption vulnerability that could lead to code execution - CVE-2016-4185: memory corruption vulnerability that could lead to code execution - CVE-2016-4186: memory corruption vulnerability that could lead to code execution - CVE-2016-4187: memory corruption vulnerability that could lead to code execution - CVE-2016-4188: memory corruption vulnerability that could lead to code execution - CVE-2016-4189: memory corruption vulnerability that could lead to code execution - CVE-2016-4190: memory corruption vulnerability that could lead to code execution - CVE-2016-4217: memory corruption vulnerability that could lead to code execution - CVE-2016-4218: memory corruption vulnerability that could lead to code execution - CVE-2016-4219: memory corruption vulnerability that could lead to code execution - CVE-2016-4220: memory corruption vulnerability that could lead to code execution - CVE-2016-4221: memory corruption vulnerability that could lead to code execution - CVE-2016-4222: use-after-free vulnerability that could lead to code execution - CVE-2016-4223: type confusion vulnerability that could lead to code execution - CVE-2016-4224: type confusion vulnerability that could lead to code execution - CVE-2016-4225: type confusion vulnerability that could lead to code execution - CVE-2016-4226: use-after-free vulnerability that could lead to code execution - CVE-2016-4227: use-after-free vulnerability that could lead to code execution - CVE-2016-4228: use-after-free vulnerability that could lead to code execution - CVE-2016-4229: use-after-free vulnerability that could lead to code execution - CVE-2016-4230: use-after-free vulnerability that could lead to code execution - CVE-2016-4231: use-after-free vulnerability that could lead to code execution - CVE-2016-4232: memory leak vulnerability - CVE-2016-4233: memory corruption vulnerability that could lead to code execution - CVE-2016-4234: memory corruption vulnerability that could lead to code execution - CVE-2016-4235: memory corruption vulnerability that could lead to code execution - CVE-2016-4236: memory corruption vulnerability that could lead to code execution - CVE-2016-4237: memory corruption vulnerability that could lead to code execution - CVE-2016-4238: memory corruption vulnerability that could lead to code execution - CVE-2016-4239: memory corruption vulnerability that could lead to code execution - CVE-2016-4240: memory corruption vulnerability that could lead to code execution - CVE-2016-4241: memory corruption vulnerability that could lead to code execution - CVE-2016-4242: memory corruption vulnerability that could lead to code execution - CVE-2016-4243: memory corruption vulnerability that could lead to code execution - CVE-2016-4244: memory corruption vulnerability that could lead to code execution - CVE-2016-4245: memory corruption vulnerability that could lead to code execution - CVE-2016-4246: memory corruption vulnerability that could lead to code execution - CVE-2016-4247: race condition vulnerability that could lead to information disclosure - CVE-2016-4248: use-after-free vulnerability that could lead to code execution - CVE-2016-4249: heap buffer overflow vulnerability that could lead to code execution The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html E-Mail link for openSUSE-SU-2016:1795-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 NonFree flash-player-11.2.202.632-2.103.1 flash-player-gnome-11.2.202.632-2.103.1 flash-player-kde4-11.2.202.632-2.103.1 flash-player-11.2.202.632-2.103.1 as a component of openSUSE 13.2 NonFree flash-player-gnome-11.2.202.632-2.103.1 as a component of openSUSE 13.2 NonFree flash-player-kde4-11.2.202.632-2.103.1 as a component of openSUSE 13.2 NonFree Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4172 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4172.html CVE-2016-4172 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4173 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4173.html CVE-2016-4173 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4174 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4174.html CVE-2016-4174 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4175 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4175.html CVE-2016-4175 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4177. CVE-2016-4176 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4176.html CVE-2016-4176 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4176. CVE-2016-4177 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4177.html CVE-2016-4177 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors. CVE-2016-4178 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4178.html CVE-2016-4178 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4179 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4179.html CVE-2016-4179 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4180 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4180.html CVE-2016-4180 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4181 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4181.html CVE-2016-4181 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4182 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4182.html CVE-2016-4182 https://bugzilla.suse.com/988579 SUSE Bug 988579 https://bugzilla.suse.com/998589 SUSE Bug 998589 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4183 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4183.html CVE-2016-4183 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4184 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4184.html CVE-2016-4184 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4185 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4185.html CVE-2016-4185 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4186 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4186.html CVE-2016-4186 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4187 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4187.html CVE-2016-4187 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4188 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4188.html CVE-2016-4188 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4189 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4189.html CVE-2016-4189 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4190 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4190.html CVE-2016-4190 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4217 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4217.html CVE-2016-4217 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4218 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4218.html CVE-2016-4218 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4219 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4219.html CVE-2016-4219 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4220 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4220.html CVE-2016-4220 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4221 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4221.html CVE-2016-4221 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4222 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4222.html CVE-2016-4222 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4224 and CVE-2016-4225. CVE-2016-4223 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4223.html CVE-2016-4223 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4223 and CVE-2016-4225. CVE-2016-4224 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4224.html CVE-2016-4224 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4223 and CVE-2016-4224. CVE-2016-4225 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4225.html CVE-2016-4225 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4226 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4226.html CVE-2016-4226 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4227 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4227.html CVE-2016-4227 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4228 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4228.html CVE-2016-4228 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4229 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4229.html CVE-2016-4229 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4231, and CVE-2016-4248. CVE-2016-4230 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4230.html CVE-2016-4230 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, and CVE-2016-4248. CVE-2016-4231 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4231.html CVE-2016-4231 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to obtain sensitive information from process memory via unspecified vectors. CVE-2016-4232 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4232.html CVE-2016-4232 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4233 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4233.html CVE-2016-4233 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4234 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4234.html CVE-2016-4234 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4235 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4235.html CVE-2016-4235 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4236 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4236.html CVE-2016-4236 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4237 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4237.html CVE-2016-4237 https://bugzilla.suse.com/988579 SUSE Bug 988579 https://bugzilla.suse.com/998589 SUSE Bug 998589 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4238 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4238.html CVE-2016-4238 https://bugzilla.suse.com/988579 SUSE Bug 988579 https://bugzilla.suse.com/998589 SUSE Bug 998589 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4239 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4239.html CVE-2016-4239 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4240 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4240.html CVE-2016-4240 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4241 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4241.html CVE-2016-4241 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4242 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4242.html CVE-2016-4242 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4244, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4243 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4243.html CVE-2016-4243 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4245, and CVE-2016-4246. CVE-2016-4244 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4244.html CVE-2016-4244 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, and CVE-2016-4246. CVE-2016-4245 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4245.html CVE-2016-4245 https://bugzilla.suse.com/988579 SUSE Bug 988579 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, and CVE-2016-4245. CVE-2016-4246 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4246.html CVE-2016-4246 https://bugzilla.suse.com/988579 SUSE Bug 988579 Race condition in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to obtain sensitive information via unspecified vectors. CVE-2016-4247 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4247.html CVE-2016-4247 https://bugzilla.suse.com/988579 SUSE Bug 988579 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, and CVE-2016-4231. CVE-2016-4248 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4248.html CVE-2016-4248 https://bugzilla.suse.com/988579 SUSE Bug 988579 Heap-based buffer overflow in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors. CVE-2016-4249 openSUSE 13.2 NonFree:flash-player-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-gnome-11.2.202.632-2.103.1 openSUSE 13.2 NonFree:flash-player-kde4-11.2.202.632-2.103.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00013.html https://www.suse.com/security/cve/CVE-2016-4249.html CVE-2016-4249 https://bugzilla.suse.com/988579 SUSE Bug 988579