Module submission - flash-plugin
Zbigniew Luszpinski
zbiggy at o2.pl
Tue Sep 12 23:32:53 UTC 2006
module name : flash-plugin
suggested section : web
update (y/n) : y
bugfix (y/n) : n
security (y/n) : y
Critical vulnerabilities have been identified in Flash Player 8.0.24.0 and
earlier versions that could allow an attacker who successfully exploits these
vulnerabilities to take control of the affected system. A malicious SWF file
must be loaded in Flash Player by the end user for an attacker to exploit
these vulnerabilities. It is recommended that users update to the most
current version of Flash Player available for their platform.
Platform: All Platforms
Vulnerability Identifier: APSB06-11
CVE Number: CVE-2006-3014, CVE-2006-3311, CVE-2006-3587, CVE-2006-3588,
CVE-2006-4640
http://www.adobe.com/support/security/bulletins/apsb06-11.html
Lunar release notes:
+updated to safe r68 release
+fixed web site link
Warning!
If you installed this patch and module installer reports wrong checksum:
-disable http proxy and caching in lunar settings before lining.
Checksum is good, but lin/lget downloads old unsecure flash plugin if
proxy/caching is enabled (on my machine, YMMV).
don't get 0wn3d,
Zbigniew 'zbiggy' Luszpinski
-------------- next part --------------
A non-text attachment was scrubbed...
Name: flash-plugin.patch
Type: text/x-diff
Size: 845 bytes
Desc: not available
Url : http://foo-projects.org/pipermail/lunar/attachments/20060912/3d712c66/flash-plugin.bin
More information about the Lunar
mailing list