Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8686
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7465
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15948
https://exchange.xforce.ibmcloud.com/vulnerabilities/54631
https://bugzilla.redhat.com/show_bug.cgi?id=543857
http://zerodayinitiative.com/advisories/ZDI-09-092/
http://www.vupen.com/english/advisories/2010/0173
http://www.vupen.com/english/advisories/2009/3456
http://www.us-cert.gov/cas/techalerts/TA09-343A.html
http://www.securityfocus.com/bid/37199
http://www.securityfocus.com/archive/1/508336/100/0/threaded
http://www.redhat.com/support/errata/RHSA-2009-1658.html
http://www.redhat.com/support/errata/RHSA-2009-1657.html
http://www.adobe.com/support/security/bulletins/apsb09-19.html
http://support.apple.com/kb/HT4004
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1
http://securitytracker.com/id?1023307
http://securitytracker.com/id?1023306
http://secunia.com/advisories/38241
http://secunia.com/advisories/37902
http://secunia.com/advisories/37584
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.html
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html