{"affected":[{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.644-149.1","flash-player-gnome":"11.2.202.644-149.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.644-149.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"flash-player":"11.2.202.644-149.1","flash-player-gnome":"11.2.202.644-149.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12 SP1","name":"flash-player","purl":"pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.2.202.644-149.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update to Adobe Flash Player 11.2.202.644 fixes the following security issues:\n\n- type confusion vulnerabilities that could lead to code execution\n  (CVE-2016-7860, CVE-2016-7861, CVE-2016-7865)\n- use-after-free vulnerabilities that could lead to code execution\n  (CVE-2016-7857, CVE-2016-7858, CVE-2016-7859, CVE-2016-7862, CVE-2016-7863, CVE-2016-7864)\n","id":"SUSE-SU-2016:2778-1","modified":"2016-11-11T12:30:30Z","published":"2016-11-11T12:30:30Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20162778-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1009217"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7857"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7858"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7859"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7860"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7861"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7862"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7863"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7864"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7865"}],"related":["CVE-2016-7857","CVE-2016-7858","CVE-2016-7859","CVE-2016-7860","CVE-2016-7861","CVE-2016-7862","CVE-2016-7863","CVE-2016-7864","CVE-2016-7865"],"summary":"Security update for flash-player","upstream":["CVE-2016-7857","CVE-2016-7858","CVE-2016-7859","CVE-2016-7860","CVE-2016-7861","CVE-2016-7862","CVE-2016-7863","CVE-2016-7864","CVE-2016-7865"]}