{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for flash-player","title":"Title of the patch"},{"category":"description","text":"The flash-player package was updated to fix the following security issues:\n\n- Security update to 11.2.202.548 (bsc#954512):\n  * APSB15-28, CVE-2015-7651, CVE-2015-7652, CVE-2015-7653,\n    CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657,\n    CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-7661,\n    CVE-2015-7662, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043,\n    CVE-2015-8044, CVE-2015-8046\n","title":"Description of the patch"},{"category":"details","text":"SUSE-SLE-DESKTOP-12-2015-824,SUSE-SLE-WE-12-2015-824","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1958-1.json"},{"category":"self","summary":"URL for SUSE-SU-2015:1958-1","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20151958-1/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2015:1958-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2015-November/001673.html"},{"category":"self","summary":"SUSE Bug 954512","url":"https://bugzilla.suse.com/954512"},{"category":"self","summary":"SUSE CVE CVE-2015-7651 page","url":"https://www.suse.com/security/cve/CVE-2015-7651/"},{"category":"self","summary":"SUSE CVE CVE-2015-7652 page","url":"https://www.suse.com/security/cve/CVE-2015-7652/"},{"category":"self","summary":"SUSE CVE CVE-2015-7653 page","url":"https://www.suse.com/security/cve/CVE-2015-7653/"},{"category":"self","summary":"SUSE CVE CVE-2015-7654 page","url":"https://www.suse.com/security/cve/CVE-2015-7654/"},{"category":"self","summary":"SUSE CVE CVE-2015-7655 page","url":"https://www.suse.com/security/cve/CVE-2015-7655/"},{"category":"self","summary":"SUSE CVE CVE-2015-7656 page","url":"https://www.suse.com/security/cve/CVE-2015-7656/"},{"category":"self","summary":"SUSE CVE CVE-2015-7657 page","url":"https://www.suse.com/security/cve/CVE-2015-7657/"},{"category":"self","summary":"SUSE CVE CVE-2015-7658 page","url":"https://www.suse.com/security/cve/CVE-2015-7658/"},{"category":"self","summary":"SUSE CVE CVE-2015-7659 page","url":"https://www.suse.com/security/cve/CVE-2015-7659/"},{"category":"self","summary":"SUSE CVE CVE-2015-7660 page","url":"https://www.suse.com/security/cve/CVE-2015-7660/"},{"category":"self","summary":"SUSE CVE CVE-2015-7661 page","url":"https://www.suse.com/security/cve/CVE-2015-7661/"},{"category":"self","summary":"SUSE CVE CVE-2015-7662 page","url":"https://www.suse.com/security/cve/CVE-2015-7662/"},{"category":"self","summary":"SUSE CVE CVE-2015-7663 page","url":"https://www.suse.com/security/cve/CVE-2015-7663/"},{"category":"self","summary":"SUSE CVE CVE-2015-8042 page","url":"https://www.suse.com/security/cve/CVE-2015-8042/"},{"category":"self","summary":"SUSE CVE CVE-2015-8043 page","url":"https://www.suse.com/security/cve/CVE-2015-8043/"},{"category":"self","summary":"SUSE CVE CVE-2015-8044 page","url":"https://www.suse.com/security/cve/CVE-2015-8044/"},{"category":"self","summary":"SUSE CVE CVE-2015-8046 page","url":"https://www.suse.com/security/cve/CVE-2015-8046/"}],"title":"Security update for flash-player","tracking":{"current_release_date":"2015-11-11T12:27:03Z","generator":{"date":"2015-11-11T12:27:03Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2015:1958-1","initial_release_date":"2015-11-11T12:27:03Z","revision_history":[{"date":"2015-11-11T12:27:03Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"flash-player-11.2.202.548-111.1.x86_64","product":{"name":"flash-player-11.2.202.548-111.1.x86_64","product_id":"flash-player-11.2.202.548-111.1.x86_64"}},{"category":"product_version","name":"flash-player-gnome-11.2.202.548-111.1.x86_64","product":{"name":"flash-player-gnome-11.2.202.548-111.1.x86_64","product_id":"flash-player-gnome-11.2.202.548-111.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Desktop 12","product":{"name":"SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12","product_identification_helper":{"cpe":"cpe:/o:suse:sled:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 12","product":{"name":"SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:12"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.548-111.1.x86_64 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64"},"product_reference":"flash-player-11.2.202.548-111.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.548-111.1.x86_64 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64"},"product_reference":"flash-player-gnome-11.2.202.548-111.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.548-111.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64"},"product_reference":"flash-player-11.2.202.548-111.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.548-111.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"},"product_reference":"flash-player-gnome-11.2.202.548-111.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12"}]},"vulnerabilities":[{"cve":"CVE-2015-7651","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7651"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted DefineFunction atoms, a different vulnerability than CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7651","url":"https://www.suse.com/security/cve/CVE-2015-7651"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7651","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7651"},{"cve":"CVE-2015-7652","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7652"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via a crafted gridFitType property value, a different vulnerability than CVE-2015-7651, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7652","url":"https://www.suse.com/security/cve/CVE-2015-7652"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7652","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7652"},{"cve":"CVE-2015-7653","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7653"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted globalToLocal arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7653","url":"https://www.suse.com/security/cve/CVE-2015-7653"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7653","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7653"},{"cve":"CVE-2015-7654","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7654"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted attachSound arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7654","url":"https://www.suse.com/security/cve/CVE-2015-7654"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7654","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7654"},{"cve":"CVE-2015-7655","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7655"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted actionExtends arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7655","url":"https://www.suse.com/security/cve/CVE-2015-7655"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7655","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7655"},{"cve":"CVE-2015-7656","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7656"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted actionImplementsOp arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7656","url":"https://www.suse.com/security/cve/CVE-2015-7656"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7656","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7656"},{"cve":"CVE-2015-7657","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7657"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted actionCallMethod arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7657","url":"https://www.suse.com/security/cve/CVE-2015-7657"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7657","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7657"},{"cve":"CVE-2015-7658","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7658"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted actionInstanceOf arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7658","url":"https://www.suse.com/security/cve/CVE-2015-7658"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7658","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7658"},{"cve":"CVE-2015-7659","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7659"}],"notes":[{"category":"general","text":"Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified \"type confusion\" in the NetConnection object implementation.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7659","url":"https://www.suse.com/security/cve/CVE-2015-7659"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7659","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7659"},{"cve":"CVE-2015-7660","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7660"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via crafted setMask arguments, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7660","url":"https://www.suse.com/security/cve/CVE-2015-7660"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7660","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7660"},{"cve":"CVE-2015-7661","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7661"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via a crafted getBounds call, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7661","url":"https://www.suse.com/security/cve/CVE-2015-7661"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7661","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7661"},{"cve":"CVE-2015-7662","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7662"}],"notes":[{"category":"general","text":"Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow remote attackers to bypass intended access restrictions and write to files via unspecified vectors.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7662","url":"https://www.suse.com/security/cve/CVE-2015-7662"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7662","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7662"},{"cve":"CVE-2015-7663","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-7663"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-7663","url":"https://www.suse.com/security/cve/CVE-2015-7663"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-7663","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-7663"},{"cve":"CVE-2015-8042","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-8042"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via a crafted loadSound call, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8043, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-8042","url":"https://www.suse.com/security/cve/CVE-2015-8042"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-8042","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-8042"},{"cve":"CVE-2015-8043","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-8043"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8044, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-8043","url":"https://www.suse.com/security/cve/CVE-2015-8043"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-8043","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-8043"},{"cve":"CVE-2015-8044","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-8044"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, and CVE-2015-8046.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-8044","url":"https://www.suse.com/security/cve/CVE-2015-8044"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-8044","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-8044"},{"cve":"CVE-2015-8046","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2015-8046"}],"notes":[{"category":"general","text":"Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, and CVE-2015-8044.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2015-8046","url":"https://www.suse.com/security/cve/CVE-2015-8046"},{"category":"external","summary":"SUSE Bug 954512 for CVE-2015-8046","url":"https://bugzilla.suse.com/954512"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.548-111.1.x86_64","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.548-111.1.x86_64"]}],"threats":[{"category":"impact","date":"2015-11-11T12:27:03Z","details":"moderate"}],"title":"CVE-2015-8046"}]}