The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash
Player web browser plug-in.
This update fixes multiple vulnerabilities in Adobe Flash Player. These
vulnerabilities are detailed on the Adobe security page APSB10-16, listed
in the References section.
Multiple security flaws were found in the way flash-plugin displayed
certain SWF content. An attacker could use these flaws to create a
specially-crafted SWF file that would cause flash-plugin to crash or,
potentially, execute arbitrary code when the victim loaded a page
containing the specially-crafted SWF content. (CVE-2010-0209,
CVE-2010-2213, CVE-2010-2214, CVE-2010-2216)
A clickjacking flaw was discovered in flash-plugin. A specially-crafted SWF
file could trick a user into unintentionally or mistakenly clicking a link
or a dialog. (CVE-2010-2215)
All users of Adobe Flash Player should install this updated package, which
upgrades Flash Player to version 9.0.280.0.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | i386 | flash-plugin | < 9.0.280.0-1.el4 | flash-plugin-9.0.280.0-1.el4.i386.rpm |