Candidate: CVE-2016-4271
PublicDate: 2016-09-14 18:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4271
 https://helpx.adobe.com/security/products/flash-player/apsb16-29.html
Description:
 Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before
 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows
 attackers to bypass intended access restrictions and obtain sensitive
 information via unspecified vectors, a different vulnerability than
 CVE-2016-4277 and CVE-2016-4278, aka a "local-with-filesystem Flash sandbox
 bypass" issue.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N [7.5 HIGH]

Patches_adobe-flashplugin:
upstream_adobe-flashplugin: released (11.2.202.635)
precise_adobe-flashplugin: released (20160913.1-0ubuntu0.12.04.1)
trusty_adobe-flashplugin: released (20160913.1-0ubuntu0.14.04.1)
trusty/esm_adobe-flashplugin: DNE (trusty was released [20160913.1-0ubuntu0.14.04.1])
vivid/stable-phone-overlay_adobe-flashplugin: DNE
vivid/ubuntu-core_adobe-flashplugin: DNE
xenial_adobe-flashplugin: released (20160913.1-0ubuntu0.16.04.1)
devel_adobe-flashplugin: released (20160913.1-0ubuntu1)