{"affected":[{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.451-77.1","flash-player-gnome":"11.2.202.451-77.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.451-77.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.451-77.1","flash-player-gnome":"11.2.202.451-77.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.451-77.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"Adobe Flash Player was updated to 11.2.202.451 (bsc#922033).\n\nThese security issues were fixed:\n- Memory corruption vulnerabilities that could lead to code execution (CVE-2015-0332, CVE-2015-0333, CVE-2015-0335, CVE-2015-0339).\n- Type confusion vulnerabilities that could lead to code execution (CVE-2015-0334, CVE-2015-0336).\n- A vulnerability that could lead to a cross-domain policy bypass (CVE-2015-0337).\n- A vulnerability that could lead to a file upload restriction bypass (CVE-2015-0340).\n- An integer overflow vulnerability that could lead to code execution (CVE-2015-0338).\n- Use-after-free vulnerabilities that could lead to code execution (CVE-2015-0341, CVE-2015-0342).\n","id":"SUSE-SU-2015:0491-1","modified":"2015-03-16T09:30:35Z","published":"2015-03-16T09:30:35Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20150491-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/922033"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0332"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0333"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0334"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0335"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0336"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0337"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0338"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0339"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0340"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0341"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-0342"}],"related":["CVE-2015-0332","CVE-2015-0333","CVE-2015-0334","CVE-2015-0335","CVE-2015-0336","CVE-2015-0337","CVE-2015-0338","CVE-2015-0339","CVE-2015-0340","CVE-2015-0341","CVE-2015-0342"],"summary":"Security update for flash-player","upstream":["CVE-2015-0332","CVE-2015-0333","CVE-2015-0334","CVE-2015-0335","CVE-2015-0336","CVE-2015-0337","CVE-2015-0338","CVE-2015-0339","CVE-2015-0340","CVE-2015-0341","CVE-2015-0342"]}