Siduction Forum
Siduction Forum => Upgrade Warnings => Topic started by: seasons on 2015/01/13, 16:52:42
-
Flash 11.2.202.429 and Pepper Flash 16.0.0.257 are out today
Release notes: http://helpx.adobe.com/flash-player/release-note/fp_16_air_16_release_notes.html
update-pepperflashplugin-nonfree --install --unstable --unverified
-
This week on Thursday:
New flashplugin 11.2.202.438
dont use chrome, dont know about Pepper
-
Chrome got it with Version 40 yesterday. And this is a really important one, there is a dangerous exploit being used on this 0-day vulnerability. Update!
greetz
devil
-
warning:
http://forum.siduction.org/index.php?topic=5309.msg43407
-
Tried to update flashplugin-nonfree yesterday but nothing new was there, today it pulled in version 11.2.202.438.
I also tried to read a little about flash vulnerability but I don't understand very much. Can somebody tell, in understandable words how dangerous this really can be for me, (or somebody else using debian sid), what can happen, how can it effect me?
-
From the release notes, it seems like the only known exploits in the wild target Windows.
http://helpx.adobe.com/security/products/flash-player/apsb15-02.html
We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8 and below.
Obviously, that does not guarantee there are no exploits targeting other OS's, but I wouldn't worry too much about it as long as you've got the updated version.
-
From the release notes, it seems like the only known exploits in the wild target Windows.
I wouldn't bet my ass for that!
-
Newest version 11.2.202.440 here:
https://www.adobe.com/products/flashplayer/distribution3.html
You should pick the gzip version for manual install.
Some Adobe websites wrongly still show 438 as latest version, though.
-
New Version 11.2.202.440 is also now delivered using
update-flashplugin-nonfree -iv
-
Not for me 440 is upstreams but it will not install
installed version = 11.2.202.438
upstream version = 11.2.202.440
-
How do you try to install it?
As root:
update-flashplugin-nonfree -iv
and then, what happens?
-
As usual ;), the maintainer of the flashplugin-nonfree repo needs some more time to update his keys. So the relevant line in 'update-flashplugin-nonfree -ivv '(for me) is
wget failed to download http://people.debian.org/~bartm/flashplugin-nonfree/D5C0FC14/fp.11.2.202.440.sha512.amd64.pgp.asc
Normally waiting one more day is enough. I have this often, see http://forum.siduction.org/index.php?topic=4270.msg35709#msg35709
-
As usual ;) , the maintainer of the flashplugin-nonfree repo needs some more time to update his keys. So the relevant line in 'update-flashplugin-nonfree -ivv '(for me) is wget failed to download http://people.debian.org/~bartm/flashplugin-nonfree/D5C0FC14/fp.11.2.202.440.sha512.amd64.pgp.asc
Normally waiting one more day is enough. I have this often, see http://forum.siduction.org/index.php?topic=4270.msg35709#msg35709 (http://forum.siduction.org/index.php?topic=4270.msg35709#msg35709)
Same for me
Edit: now it's there installed version = 11.2.202.440