Launchpad.net

CVE 2007-2022

Adobe Macromedia Flash Player 7 and 9, when used with Opera before 9.20 or Konqueror before 20070613, allows remote attackers to obtain sensitive information (browser keystrokes), which are leaked to the Flash Player applet.

Related bugs and status

CVE-2007-2022 (Candidate) is related to these bugs:

Bug #125233: [flashplugin-nonfree] Arbitrary code execution in Flash Player 9.0.45.0 and prior versions

Summary				In	Importance	Status
	125233	[flashplugin-nonfree] Arbitrary code execution in Flash Player 9.0.45.0 and prior versions		flashplugin-nonfree (Ubuntu)	Undecided	Fix Released
	125233	[flashplugin-nonfree] Arbitrary code execution in Flash Player 9.0.45.0 and prior versions		flashplugin-nonfree (Ubuntu Feisty)	High	Fix Committed

Bug #125986: [MASTER] No flash after update of flashplugin-nonfree

Summary				In	Importance	Status
	125986	[MASTER] No flash after update of flashplugin-nonfree		flashplugin-nonfree (Ubuntu)	Undecided	Fix Released
	125986	[MASTER] No flash after update of flashplugin-nonfree		firefox (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.adobe.com/s...
CONFIRM: http://www.opera.com/s...
BID: 23437
SECTRACK: 1017903
SECUNIA: 24877
SUSE: SUSE-SA:2007:028
SECUNIA: 25027
SUSE: SUSE-SR:2007:012
SECUNIA: 25432
REDHAT: RHSA-2007:0494
SECUNIA: 25662
SECUNIA: 25669
SGI: 20070602-01-P
SECUNIA: 25894
SECUNIA: 25933
CONFIRM: http://www.adobe.com/s...
SECUNIA: 26027
SUSE: SUSE-SA:2007:046
SECUNIA: 26118
GENTOO: GLSA-200708-01
SECUNIA: 26357
CONFIRM: https://issues.rpath.c...
SECUNIA: 26860
CERT: TA07-192A
MANDRIVA: MDKSA-2007:138
SUNALERT: 103167
SECUNIA: 28068
SUNALERT: 201506
VUPEN: ADV-2007-1361
VUPEN: ADV-2007-2497
VUPEN: ADV-2007-4190
XF: opera-flash-player-uns...
OVAL: oval:org.mitre.oval:de...