Candidate: CVE-2018-4920
PublicDate: 2018-05-19 17:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4920
 https://helpx.adobe.com/security/products/flash-player/apsb18-05.html
Description:
 Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type
 confusion vulnerability. Successful exploitation could lead to arbitrary
 code execution in the context of the current user.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: chriscoulson
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_flashplugin-nonfree:
upstream_flashplugin-nonfree: released (29.0.0.113)
precise/esm_flashplugin-nonfree: DNE
trusty_flashplugin-nonfree: released (29.0.0.140ubuntu0.14.04.1)
trusty/esm_flashplugin-nonfree: DNE (trusty was released [29.0.0.140ubuntu0.14.04.1])
xenial_flashplugin-nonfree: released (29.0.0.140ubuntu0.16.04.1)
artful_flashplugin-nonfree: released (29.0.0.140ubuntu0.17.10.1)
devel_flashplugin-nonfree: released (29.0.0.140ubuntu1)

Patches_adobe-flashplugin:
upstream_adobe-flashplugin: needs-triage
precise/esm_adobe-flashplugin: DNE
trusty_adobe-flashplugin: released (1:20180410.1-0ubuntu0.14.04.1)
trusty/esm_adobe-flashplugin: DNE (trusty was released [1:20180410.1-0ubuntu0.14.04.1])
xenial_adobe-flashplugin: released (1:20180410.1-0ubuntu0.16.04.1)
artful_adobe-flashplugin: released (1:20180410.1-0ubuntu0.17.10.1)
devel_adobe-flashplugin: released (1:20180410.1-0ubuntu1)