[opensuse] 13.1 FF38 - sites complain Flash Player is Vulnerable
All, I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed: flash-player-11.2.202.457-174.1.x86_64 Is this not the latest? I've checked and there are no newer versions. Am I missing a patch or something? If so, where to get? -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On Sat, Jul 04, 2015 at 08:51:27PM -0500, David C. Rankin wrote:
All,
I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed:
flash-player-11.2.202.457-174.1.x86_64
Is this not the latest? I've checked and there are no newer versions. Am I missing a patch or something? If so, where to get?
It has 11.2.202.468 in the 13.1 non-oss update channel since a week. can you check if that is in your repo list, and enabled? zypper patch ? Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On 07/05/2015 03:54 AM, Marcus Meissner wrote:
It has 11.2.202.468 in the 13.1 non-oss update channel since a week.
can you check if that is in your repo list, and enabled?
zypper patch ?
Thanks Marcus, I usually wait for the package rather than the patch. If things go south I can easily roll-back from /var/cache/rpm. I'll check the repo (I have it enabled) -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On 07/05/2015 05:02 AM, David C. Rankin wrote:
Thanks Marcus,
I usually wait for the package rather than the patch. If things go south I can easily roll-back from /var/cache/rpm. I'll check the repo (I have it enabled)
Marcus, Sorry for the noise. It was there. I checked non-oss, not update-non-oss (sheesh) -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
* Marcus Meissner <meissner@suse.de> [07-05-15 04:54]:
On Sat, Jul 04, 2015 at 08:51:27PM -0500, David C. Rankin wrote:
All,
I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed:
flash-player-11.2.202.457-174.1.x86_64
Is this not the latest? I've checked and there are no newer versions. Am I missing a patch or something? If so, where to get?
It has 11.2.202.468 in the 13.1 non-oss update channel since a week.
can you check if that is in your repo list, and enabled?
Tumbleweed build points to http://download.opensuse.org/factory/repo/non-oss/suse/x86_64/ and iiuc factory is no longer tw and factory non-oss contains flash-player-11.2.202.457-1.1.x86_64.rpm tks, -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri http://wahoo.no-ip.org Photo Album: http://wahoo.no-ip.org/gallery2 Registered Linux User #207535 @ http://linuxcounter.net -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On Sun, Jul 05, 2015 at 08:45:33AM -0400, Patrick Shanahan wrote:
* Marcus Meissner <meissner@suse.de> [07-05-15 04:54]:
On Sat, Jul 04, 2015 at 08:51:27PM -0500, David C. Rankin wrote:
All,
I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed:
flash-player-11.2.202.457-174.1.x86_64
Is this not the latest? I've checked and there are no newer versions. Am I missing a patch or something? If so, where to get?
It has 11.2.202.468 in the 13.1 non-oss update channel since a week.
can you check if that is in your repo list, and enabled?
Tumbleweed build points to http://download.opensuse.org/factory/repo/non-oss/suse/x86_64/
and iiuc factory is no longer tw
and factory non-oss contains flash-player-11.2.202.457-1.1.x86_64.rpm
The Factory/Tumbleweed non-oss repository has for some reason not published, even though the new flash-player is in the project there. I mailed Adrian and Coolo. Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2015-07-05 03:51, David C. Rankin wrote:
All,
I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed:
Can you post a link to a page that gives that warning? noaa.weather.gov gives me server not found. I tried "http://www.weather.gov/", but I don't see flash animations there. I clicked on a random place and got to http://www.srh.noaa.gov/tlh/, where the radar animation is a plain gif.
flash-player-11.2.202.457-174.1.x86_64
I have flash-player-11.2.202.468-123.1.x86_64, that's the latest on 13.1. Yours is a bit older, certainly. By the way: using the patch you can generate the full updated rpm, there is a command for that. If after that regeneration the checksum doesn't match, then the logic is to ignore it and download the full rpm instead. Just run "zypper patch" or YOU and it will apply it automatically... - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlWZZx8ACgkQja8UbcUWM1zXGwD9El0TSMCZ68xCs6Ca5rIngFOV elkcxUgNf8oqYoEsc/UBAJLuBmniqY7OU3MB2DsgjvK7lIsevKu92o/8VD59UVCm =0DyP -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On 07/05/2015 12:19 PM, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
On 2015-07-05 03:51, David C. Rankin wrote:
All,
I have had several sites pop-up warnings that flash-player is vulnerable and request confirmation before viewing. noaa.weather.gov being the latest. I have the following installed:
Can you post a link to a page that gives that warning? noaa.weather.gov gives me server not found. I tried "http://www.weather.gov/", but I don't see flash animations there. I clicked on a random place and got to http://www.srh.noaa.gov/tlh/, where the radar animation is a plain gif.
Sure, it was: http://radar.weather.gov/radar.php?rid=SHV&product=N0Z&overlay=11101111&loop... (sorry, it used to be noaa.weather.gov...) -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2015-07-05 23:43, David C. Rankin wrote:
Sure, it was:
http://radar.weather.gov/radar.php?rid=SHV&product=N0Z&overlay=11101111&loop...
(sorry, it used to be noaa.weather.gov...)
Ah. Well, it loads nicely here, no complaints :-) - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlWZrJcACgkQja8UbcUWM1xGKAD/S75T38oSQV8oG2LexdQTLl1H lh7NrdLESnOvtoUu4IkA/2xRWB0mps/SdeMc6+c0n9iHo2PydYZtTxoLosqTr4yn =qD4u -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
participants (4)
-
Carlos E. R. -
David C. Rankin -
Marcus Meissner -
Patrick Shanahan