Adobe Flash Player 9.x up to 184.108.40.206, 8.x up to 220.127.116.11, and 7.x up to
18.104.22.168 does not sufficiently restrict the interpretation and usage of
cross-domain policy files, which makes it easier for remote attackers to conduct
cross-domain and cross-site scripting (XSS) attacks.
This issue was addressed in:
Red Hat Enterprise Linux Extras: