{"affected":[{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.535-105.1","flash-player-gnome":"11.2.202.535-105.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.535-105.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.535-105.1","flash-player-gnome":"11.2.202.535-105.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.535-105.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"flash-player was updated to version 11.2.202.535 to fix 13 security issues (bsc#950169).\n\nThese security issues were fixed:\n- A vulnerability that could be exploited to bypass the same-origin-policy and lead to information disclosure (CVE-2015-7628).\n- A defense-in-depth feature in the Flash broker API (CVE-2015-5569).\n- Use-after-free vulnerabilities that could lead to code execution (CVE-2015-7629, CVE-2015-7631, CVE-2015-7643, CVE-2015-7644).\n- A buffer overflow vulnerability that could lead to code execution (CVE-2015-7632).\n- Memory corruption vulnerabilities that could lead to code execution (CVE-2015-7625, CVE-2015-7626, CVE-2015-7627, CVE-2015-7630, CVE-2015-7633, CVE-2015-7634).\n  ","id":"SUSE-SU-2015:1740-1","modified":"2015-10-14T07:34:43Z","published":"2015-10-14T07:34:43Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20151740-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/950169"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5569"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7625"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7626"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7627"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7628"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7629"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7630"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7631"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7632"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7633"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7634"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7643"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7644"}],"related":["CVE-2015-5569","CVE-2015-7625","CVE-2015-7626","CVE-2015-7627","CVE-2015-7628","CVE-2015-7629","CVE-2015-7630","CVE-2015-7631","CVE-2015-7632","CVE-2015-7633","CVE-2015-7634","CVE-2015-7643","CVE-2015-7644"],"summary":"Security update for flash-player","upstream":["CVE-2015-5569","CVE-2015-7625","CVE-2015-7626","CVE-2015-7627","CVE-2015-7628","CVE-2015-7629","CVE-2015-7630","CVE-2015-7631","CVE-2015-7632","CVE-2015-7633","CVE-2015-7634","CVE-2015-7643","CVE-2015-7644"]}