{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2016-4132","title":"Title"},{"category":"description","text":"Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2016-4132","url":"https://www.suse.com/security/cve/CVE-2016-4132"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 984695 for CVE-2016-4132","url":"https://bugzilla.suse.com/984695"},{"category":"external","summary":"Advisory link for SUSE-SU-2016:1613-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2016-June/002125.html"},{"category":"external","summary":"Advisory link for openSUSE-SU-2016:1621-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RO34CZI4CCUJRZCOIC37SMYYAI3PE6IA/#RO34CZI4CCUJRZCOIC37SMYYAI3PE6IA"},{"category":"external","summary":"Advisory link for openSUSE-SU-2016:1625-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/T25EPBTFPJOTLFN2MLBBI3BBSRR2LDWN/#T25EPBTFPJOTLFN2MLBBI3BBSRR2LDWN"}],"title":"SUSE CVE CVE-2016-4132","tracking":{"current_release_date":"2025-10-07T11:02:42Z","generator":{"date":"2023-02-15T05:03:43Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2016-4132","initial_release_date":"2023-02-15T05:03:43Z","revision_history":[{"date":"2023-02-15T05:03:43Z","number":"2","summary":"Current version"},{"date":"2023-12-08T04:36:13Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:13:08Z","number":"4","summary":"Current version"},{"date":"2025-01-01T09:58:27Z","number":"5","summary":"Current version"},{"date":"2025-02-18T15:44:51Z","number":"6","summary":"Current version"},{"date":"2025-03-16T04:03:52Z","number":"7","summary":"Current version"},{"date":"2025-04-25T09:35:11Z","number":"8","summary":"Current version"},{"date":"2025-10-07T11:02:42Z","number":"9","summary":"Current version"}],"status":"interim","version":"9"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Desktop 12","product":{"name":"SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12","product_identification_helper":{"cpe":"cpe:/o:suse:sled:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Desktop 12 SP1","product":{"name":"SUSE Linux Enterprise Desktop 12 SP1","product_id":"SUSE Linux Enterprise Desktop 12 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sled:12:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12","product":{"name":"SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP1","product":{"name":"SUSE Linux Enterprise Server 12 SP1","product_id":"SUSE Linux Enterprise Server 12 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP1","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 12","product":{"name":"SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 12 SP1","product":{"name":"SUSE Linux Enterprise Workstation Extension 12 SP1","product_id":"SUSE Linux Enterprise Workstation Extension 12 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:12:sp1"}}},{"category":"product_version","name":"flash-player-11.2.202.626-133.1","product":{"name":"flash-player-11.2.202.626-133.1","product_id":"flash-player-11.2.202.626-133.1","product_identification_helper":{"cpe":"cpe:2.3:a:adobe:flash_player:11.2.202.626:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/flash-player@11.2.202.626-133.1?upstream=flash-player-11.2.202.626-133.1.src.rpm"}}},{"category":"product_version","name":"flash-player-gnome-11.2.202.626-133.1","product":{"name":"flash-player-gnome-11.2.202.626-133.1","product_id":"flash-player-gnome-11.2.202.626-133.1","product_identification_helper":{"cpe":"cpe:2.3:a:adobe:flash_player:11.2.202.626:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/flash-player-gnome@11.2.202.626-133.1?upstream=flash-player-11.2.202.626-133.1.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Desktop 12","product_id":"SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Desktop 12 SP1","product_id":"SUSE Linux Enterprise Desktop 12 SP1:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Desktop 12 SP1","product_id":"SUSE Linux Enterprise Desktop 12 SP1:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Workstation Extension 12","product_id":"SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server 12 SP1","product_id":"SUSE Linux Enterprise Server 12 SP1:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server 12 SP1","product_id":"SUSE Linux Enterprise Server 12 SP1:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-11.2.202.626-133.1 as component of SUSE Linux Enterprise Workstation Extension 12 SP1","product_id":"SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-11.2.202.626-133.1"},"product_reference":"flash-player-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12 SP1"},{"category":"default_component_of","full_product_name":{"name":"flash-player-gnome-11.2.202.626-133.1 as component of SUSE Linux Enterprise Workstation Extension 12 SP1","product_id":"SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-gnome-11.2.202.626-133.1"},"product_reference":"flash-player-gnome-11.2.202.626-133.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12 SP1"}]},"vulnerabilities":[{"cve":"CVE-2016-4132","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2016-4132"}],"notes":[{"category":"general","text":"Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.626-133.1"]},"references":[{"category":"external","summary":"CVE-2016-4132","url":"https://www.suse.com/security/cve/CVE-2016-4132"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 984695 for CVE-2016-4132","url":"https://bugzilla.suse.com/984695"},{"category":"external","summary":"Advisory link for SUSE-SU-2016:1613-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2016-June/002125.html"},{"category":"external","summary":"Advisory link for openSUSE-SU-2016:1621-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RO34CZI4CCUJRZCOIC37SMYYAI3PE6IA/#RO34CZI4CCUJRZCOIC37SMYYAI3PE6IA"},{"category":"external","summary":"Advisory link for openSUSE-SU-2016:1625-1","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/T25EPBTFPJOTLFN2MLBBI3BBSRR2LDWN/#T25EPBTFPJOTLFN2MLBBI3BBSRR2LDWN"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.626-133.1"]}],"scores":[{"cvss_v3":{"baseScore":8.8,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.1"},"products":["SUSE Linux Enterprise Desktop 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Server for SAP Applications 12:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-gnome-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.626-133.1","SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.626-133.1"]}],"threats":[{"category":"impact","date":"2016-06-14T17:30:42Z","details":"important"}],"title":"CVE-2016-4132"}]}