Adobe Flash Player 9.x up to 220.127.116.11, 8.x up to 18.104.22.168, and 7.x up to
22.214.171.124 does not sufficiently restrict the interpretation and usage of
cross-domain policy files, which makes it easier for remote attackers to conduct
cross-domain and cross-site scripting (XSS) attacks.
This issue was addressed in:
Red Hat Enterprise Linux Extras: