1
Candidate: CVE-2014-0533
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0533
5
http://helpx.adobe.com/security/products/flash-player/apsb14-16.html
7
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before
8
13.0.0.223 and 14.x before 14.0.0.125 on Windows and OS X and before
9
11.2.202.378 on Linux, Adobe AIR before 14.0.0.110, Adobe AIR SDK before
10
14.0.0.110, and Adobe AIR SDK & Compiler before 14.0.0.110 allows remote
11
attackers to inject arbitrary web script or HTML via unspecified vectors, a
12
different vulnerability than CVE-2014-0531 and CVE-2014-0532.
17
Discovered-by: Erling Ellingsen
18
Assigned-to: chriscoulson
20
Patches_flashplugin-nonfree:
21
upstream_flashplugin-nonfree: released (11.2.202.378)
22
lucid_flashplugin-nonfree: ignored (reached end-of-life)
23
precise_flashplugin-nonfree: released (11.2.202.378ubuntu0.12.04.1)
24
saucy_flashplugin-nonfree: released (11.2.202.378ubuntu0.13.10.1)
25
trusty_flashplugin-nonfree: released (11.2.202.378ubuntu0.14.04.1)
26
devel_flashplugin-nonfree: released (11.2.202.378ubuntu1)
28
Patches_adobe-flashplugin:
29
upstream_adobe-flashplugin: released (11.2.202.378)
30
lucid_adobe-flashplugin: ignored (reached end-of-life)
31
precise_adobe-flashplugin: released (11.2.202.378-0precise1)
32
saucy_adobe-flashplugin: released (11.2.202.378-0saucy1)
33
trusty_adobe-flashplugin: released (11.2.202.378-0trusty1)
34
devel_adobe-flashplugin: DNE