latest updates from easySERVICE™
The vulnerable versions are 184.108.40.206 and earlier versions for Windows; 220.127.116.11 and earlier versions for Macintosh; and 18.104.22.1680 and earlier versions for Linux. These same versions embedded in Internet Explorer 10 and 11 and in Google Chrome will be updated automatically through those products’ update mechanisms.
The new versions are 22.214.171.124 for Windows and Mac and 126.96.36.1996 for Linux.
This attack and update are unrelated to the zero day IE vulnerability just disclosed, the attack for which uses a Flash .SWF file as an attack vector. In that case no vulnerability has been indicated in Flash itself.
The vulnerability, which will be designated CVE-2014-0515, was reported to Google by Alexander Polyakov of Kaspersky Labs.
Source: Associated Press