Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2018-0349)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.1.10.2018.0349

Category: Mageia Linux Local Security Checks

Title: Mageia: Security Advisory (MGASA-2018-0349)

Summary: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2018-0349 advisory.

Description: Summary:
The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2018-0349 advisory.

Vulnerability Insight:
Updated flash-player-plugin packages fix security vulnerabilities:
* Out-of-bounds read that can lead to Information Disclosure
(CVE-2018-12824, CVE-2018-12826, CVE-2018-12827)
* Security bypass that can lead to Security Mitigation Bypass
(CVE-2018-12825)
* Use of a component with a known vulnerability can lead to a
Privilege Escalation (CVE-2018-12828)

Affected Software/OS:
'flash-player-plugin' package(s) on Mageia 6.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2018-12824
BugTraq ID: 105066
http://www.securityfocus.com/bid/105066
RedHat Security Advisories: RHSA-2018:2435
https://access.redhat.com/errata/RHSA-2018:2435
http://www.securitytracker.com/id/1041448
Common Vulnerability Exposure (CVE) ID: CVE-2018-12825
BugTraq ID: 105070
http://www.securityfocus.com/bid/105070
Common Vulnerability Exposure (CVE) ID: CVE-2018-12826
Common Vulnerability Exposure (CVE) ID: CVE-2018-12827
https://www.exploit-db.com/exploits/45268/
Common Vulnerability Exposure (CVE) ID: CVE-2018-12828
BugTraq ID: 105071
http://www.securityfocus.com/bid/105071

Copyright Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.1.10.2018.0349
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2018-0349)
Summary:	The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2018-0349 advisory.
Description:	Summary: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2018-0349 advisory. Vulnerability Insight: Updated flash-player-plugin packages fix security vulnerabilities: * Out-of-bounds read that can lead to Information Disclosure (CVE-2018-12824, CVE-2018-12826, CVE-2018-12827) * Security bypass that can lead to Security Mitigation Bypass (CVE-2018-12825) * Use of a component with a known vulnerability can lead to a Privilege Escalation (CVE-2018-12828) Affected Software/OS: 'flash-player-plugin' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-12824 BugTraq ID: 105066 http://www.securityfocus.com/bid/105066 RedHat Security Advisories: RHSA-2018:2435 https://access.redhat.com/errata/RHSA-2018:2435 http://www.securitytracker.com/id/1041448 Common Vulnerability Exposure (CVE) ID: CVE-2018-12825 BugTraq ID: 105070 http://www.securityfocus.com/bid/105070 Common Vulnerability Exposure (CVE) ID: CVE-2018-12826 Common Vulnerability Exposure (CVE) ID: CVE-2018-12827 https://www.exploit-db.com/exploits/45268/ Common Vulnerability Exposure (CVE) ID: CVE-2018-12828 BugTraq ID: 105071 http://www.securityfocus.com/bid/105071
Copyright	Copyright (C) 2022 Greenbone AG