CVE-2015-5546 Common Vulnerabilities and Exposures

Upstream information

CVE-2015-5546 at MITRE

Description

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5544, CVE-2015-5545, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, and CVE-2015-5553.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having critical severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	10
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	Complete
Availability Impact	Complete

SUSE Bugzilla entry: 941239 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SU-2015:1373-1, published Wed Aug 12 08:09:32 MDT 2015
SUSE-SU-2015:1374-1, published Wed Aug 12 08:09:52 MDT 2015
openSUSE-SU-2015:1388-1, published Fri Dec 8 15:48:59 2023
openSUSE-SU-2015:1391-1, published Fri Dec 8 15:48:59 2023
openSUSE-SU-2015:1781-1, published Fri Dec 8 15:48:59 2023

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 11 SP3	`flash-player >= 11.2.202.508-0.14.1` `flash-player-gnome >= 11.2.202.508-0.14.1` `flash-player-kde4 >= 11.2.202.508-0.14.1`	Patchnames: sledsp3-flash-player-12025
SUSE Linux Enterprise Desktop 11 SP4	`flash-player >= 11.2.202.508-0.14.1` `flash-player-gnome >= 11.2.202.508-0.14.1` `flash-player-kde4 >= 11.2.202.508-0.14.1`	Patchnames: sledsp4-flash-player-12025
SUSE Linux Enterprise Desktop 12 SP1	`flash-player >= 11.2.202.548-111.1` `flash-player-gnome >= 11.2.202.548-111.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP1 GA flash-player-11.2.202.548-111.1 SUSE Linux Enterprise Workstation Extension 12 SP1 GA flash-player-11.2.202.548-111.1
SUSE Linux Enterprise Desktop 12	`flash-player >= 11.2.202.508-99.1` `flash-player-gnome >= 11.2.202.508-99.1`	Patchnames: SUSE-SLE-DESKTOP-12-2015-390 SUSE-SLE-WE-12-2015-390
SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1	`flash-player >= 11.2.202.548-111.1` `flash-player-gnome >= 11.2.202.548-111.1`	Patchnames: SUSE Linux Enterprise Workstation Extension 12 SP1 GA flash-player-11.2.202.548-111.1
SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Workstation Extension 12	`flash-player >= 11.2.202.508-99.1` `flash-player-gnome >= 11.2.202.508-99.1`	Patchnames: SUSE-SLE-WE-12-2015-390

SUSE Timeline for this CVE

CVE page created: Tue Aug 11 11:16:44 2015
CVE page last modified: Sat Sep 7 19:16:32 2024