A vulnerability in Adobe Flash Player could allow an unauthenticated, remote attacker to access sensitive information on a targeted system.
The vulnerability is due to an unspecified condition in the affected software that could lead to an out-of-bounds read condition. An attacker could exploit this vulnerability by persuading a user to visit a web page that contains malicious Flash content. A successful exploit could allow the attacker to access sensitive information, which could be used to conduct additional attacks.
Adobe has confirmed the vulnerability and released software updates.
FreeBSD has released a VuXML document at the following link: Flash Player — information disclosure
- Flash Player Desktop Runtime version 126.96.36.199 for Windows and Macintosh
- Flash Player version 188.8.131.52 for Linux
- Flash Player for Google Chrome version 184.108.40.206 for Windows, Macintosh, Linux, and ChromeOS
- Flash Player for Microsoft Edge and Internet Explorer 11 version 220.127.116.11 for Windows 10 and Windows 8.1
FreeBSD has released ports collection updates at the following link: Ports Collection Index