CRLF injection vulnerability in Adobe Flash Player plugin
Bug #68429 reported by
Kees Cook
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
flashplugin-nonfree (Ubuntu) |
Fix Released
|
Medium
|
Daniel T Chen |
Bug Description
Version 7.0.63 and earlier are known to be vulnerable. Additionally, it seems likely, based on time frame, that this vulnerability isn't fixed in Adobe's current 7.0.68 release either.
CVE References
Changed in flashplugin-nonfree: | |
assignee: | nobody → keescook |
Changed in flashplugin-nonfree: | |
assignee: | keescook → nobody |
Changed in flashplugin-nonfree: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
I can confirm that 7.0.68 is vulnerable.