CVE-2014-0574

Publication date 11 November 2014

Last updated 24 July 2024

Ubuntu priority

Double free vulnerability in Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allows attackers to execute arbitrary code via unspecified vectors.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
adobe-flashplugin	14.10 utopic	Fixed 11.2.202.418-0utopic1
	14.04 LTS trusty	Fixed 11.2.202.418-0trusty1
	12.04 LTS precise	Fixed 11.2.202.418-0precise1
	10.04 LTS lucid	Ignored end of life
flashplugin-nonfree	14.10 utopic	Fixed 11.2.202.418ubuntu0.14.10.1
	14.04 LTS trusty	Fixed 11.2.202.418ubuntu0.14.04.1
	12.04 LTS precise	Fixed 11.2.202.418ubuntu0.12.04.1
	10.04 LTS lucid	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

http://helpx.adobe.com/security/products/flash-player/apsb14-24.html
https://www.cve.org/CVERecord?id=CVE-2014-0574