Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address a critical vulnerability that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10. https://helpx.adobe.com/security/products/flash-player/apsb16-36.html Ports for flashplugin should be updated to 11.2r202.643 or later to avoid these vulnerabilities.
@Ben Anyone can create the vuxml entry, which can independently be committed. If you'd like, create a new issue, assign yourself and have this one depend on it (for tracking purposes).
A commit references this bug: Author: tijl Date: Thu Oct 27 12:53:13 UTC 2016 New revision: 424761 URL: https://svnweb.freebsd.org/changeset/ports/424761 Log: Update flash plugin to 11.2r202.643. Remove unnecessary USES=desktop-file-utils. PR: 213831 MFH: 2016Q4 Security: https://helpx.adobe.com/security/products/flash-player/apsb16-36.html Changes: head/www/linux-c6-flashplugin11/Makefile head/www/linux-c6-flashplugin11/distinfo
A commit references this bug: Author: tijl Date: Thu Oct 27 13:14:18 UTC 2016 New revision: 424764 URL: https://svnweb.freebsd.org/changeset/ports/424764 Log: Document latest flash plugin vulnerability. PR: 213831 Changes: head/security/vuxml/vuln.xml
A commit references this bug: Author: tijl Date: Thu Oct 27 16:30:44 UTC 2016 New revision: 424775 URL: https://svnweb.freebsd.org/changeset/ports/424775 Log: MFH: r424761 Update flash plugin to 11.2r202.643. Remove unnecessary USES=desktop-file-utils. PR: 213831 Security: https://helpx.adobe.com/security/products/flash-player/apsb16-36.html Approved by: ports-secteam (feld) Changes: _U branches/2016Q4/ branches/2016Q4/www/linux-c6-flashplugin11/Makefile branches/2016Q4/www/linux-c6-flashplugin11/distinfo