Oval Definition:oval:org.opensuse.security:def:20155571
Revision Date:2022-05-20Version:1
Title:CVE-2015-5571
Description:

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks against JSONP endpoints, and obtain sensitive information, via a crafted OBJECT element with SWF content satisfying the character-set requirements of a callback API. NOTE: this issue exists because of an incomplete fix for CVE-2014-4671 and CVE-2014-5333.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-5571
Mitre CVE-2015-5571
SUSE CVE-2015-5571
openSUSE-SU-2015:1616-1
openSUSE-SU-2015:1616-1
openSUSE-SU-2015:1781-1
openSUSE-SU-2015:1781-1
SUSE-SU-2015:1614-1
SUSE-SU-2015:1614-1
SUSE-SU-2015:1618-1
SUSE-SU-2015:1618-1
Platform(s):openSUSE 13.1 NonFree
openSUSE 13.2 NonFree
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
Product(s):
Definition Synopsis
  • openSUSE 13.1 NonFree is installed
  • AND Package Information
  • flash-player-11.2.202.521-135.1 is installed
  • OR flash-player-gnome-11.2.202.521-135.1 is installed
  • OR flash-player-kde4-11.2.202.521-135.1 is installed
    • Definition Synopsis
  • openSUSE 13.2 NonFree is installed
  • AND Package Information
  • flash-player-11.2.202.521-2.70.1 is installed
  • OR flash-player-gnome-11.2.202.521-2.70.1 is installed
  • OR flash-player-kde4-11.2.202.521-2.70.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • flash-player-11.2.202.521-102.1 is installed
  • OR flash-player-gnome-11.2.202.521-102.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.521-0.17.1 is installed
  • OR flash-player-gnome-11.2.202.521-0.17.1 is installed
  • OR flash-player-kde4-11.2.202.521-0.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • flash-player-11.2.202.548-111 is installed
  • OR flash-player-gnome-11.2.202.548-111 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND
  • flash-player-11.2.202.521-102 is installed
  • OR flash-player-gnome-11.2.202.521-102 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND
  • flash-player-11.2.202.521-102.1 is installed
  • OR flash-player-gnome-11.2.202.521-102.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • flash-player-11.2.202.548-111.1 is installed
  • OR flash-player-gnome-11.2.202.548-111.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND
  • flash-player-11.2.202.521-102.1 is installed
  • OR flash-player-gnome-11.2.202.521-102.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • flash-player-11.2.202.548-111.1 is installed
  • OR flash-player-gnome-11.2.202.548-111.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND
  • flash-player-11.2.202.521-102.1 is installed
  • OR flash-player-gnome-11.2.202.521-102.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • flash-player-11.2.202.548-111 is installed
  • OR flash-player-gnome-11.2.202.548-111 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND
  • flash-player-11.2.202.521-102 is installed
  • OR flash-player-gnome-11.2.202.521-102 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • flash-player-11.2.202.548-111.1 is installed
  • OR flash-player-gnome-11.2.202.548-111.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND
  • flash-player-11.2.202.521-102.1 is installed
  • OR flash-player-gnome-11.2.202.521-102.1 is installed
    • BACK