Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » APSB15-05

Overview

Id APSB15-05
Name APSB15-05 Adobe Flash Player 13.0.0.277 ESR for Mac OS X (See Notes)
Vendor Name adobe
Product Adobe Flash Player
Content Type Critical Critical
Language(s)
Operating System(s) OSX 
Released On 12 Mar 2015 12:00:00

APSB15-05

APSB15-05 Adobe Flash Player 13.0.0.277 ESR for Mac OS X (See Notes)

Vendor Name

adobe

Product

Adobe Flash Player

Released On

12 Mar 2015 12:00:00

Url

http://helpx.adobe.com/security/products/flash-player/apsb15-05.html

Description

Adobe Flash Player Plugin Extended Support Release (ESR) is used to run content created on the Adobe Flash platform within a Netscape-compatible web browser with a more controlled release cycle.

Flash Player 13.0.0.277 addresses the following security issues:

  • CVE-2015-0332, CVE-2015-0333, CVE-2015-0335, CVE-2015-0339: Resolve memory corruption vulnerabilities that could lead to code execution
  • CVE-2015-0334, CVE-2015-0336: Resolve type confusion vulnerabilities that could lead to code execution
  • CVE-2015-0337: Resolves a vulnerability that could lead to a cross-domain policy bypass
  • CVE-2015-0340: Resolves a vulnerability that could lead to a file upload restriction bypass
  • CVE-2015-0338: Resolves an integer overflow vulnerability that could lead to code execution
  • CVE-2015-0341, CVE-2015-0342: Resolve use-after-free vulnerabilities that could lead to code execution

  • Notes:
  • This update is applicable to Flash Player 10.x, 11.7.x (extended support versions 11.7.700.232 and higher) and 13.0.x (extended support versions 13.0.0.214 and higher)
  • By default, deployment will automatically update Adobe Flash Player
  • Use the download only option to deploy the installer to the agent's temporary directory (by default, "/tmp/{Agent GUID}"). An administrator may then manually install the update
  • Related Resources

    Related Vulnerabilities

    CVE-2015-0332   CVE-2015-0333   CVE-2015-0334   CVE-2015-0335   CVE-2015-0336   CVE-2015-0337   CVE-2015-0338   CVE-2015-0339   CVE-2015-0340   CVE-2015-0341   CVE-2015-0342  

    Related Patches

    Superseded Patches


    Last Updated: 27 May 2016 11:20:54