latest updates from easySERVICE™
Adobe has issued patches for security vulnerabilities in Flash Player — 11 of which are deemed critical.
On Thursday, Adobe issued its latest set of security updates for the Adobe Flash Player. The updates for Windows, Mac and Linux users address “vulnerabilities that could potentially allow an attacker to take control of the affected system,” according to the software giant.
The security update fixes issues affecting Adobe Flash Player desktop runtime for Windows and Mac, the Adobe Flash Player Extended Support Release, Adobe Flash Player for Linux and Flash Player installed with IE and Google Chrome.
The patches solve memory corruption vulnerabilities and type confusion vulnerabilities which could lead to remote code execution, vulnerabilities which could cause the bypass of cross-domain policies, as well as security issues which allow the circumvention of file upload restriction. In addition, other updates fix an integer overflow vulnerability and use-after-free vulnerabilities which could lead to remote code execution.
Adobe recommends that users update their products to the latest versions. Windows and Mac users of the Adobe Flash Player desktop runtime should update to Adobe Flash Player 126.96.36.199, users of the Adobe Flash Player Extended Support Release should update to Adobe Flash Player 188.8.131.527, and users of the Adobe Flash Player for Linux need to update to Adobe Flash Player 184.108.40.2061.
Google Chrome users with Flash Player enabled, as well as users of Internet Explorer on Windows 8.x with the software will see an automatic update to version 220.127.116.11.
Adobe Flash Player version 18.104.22.1685 and previous versions, as well as 22.214.171.1249, 126.96.36.1992 and both earlier 11.x and 13.x are affected by the latest security patch.
Within the security bulletin, Adobe has given credit to Google Project Zero researchers, Intel Labs and McAfee Labs, HP’s Zero Day Initiative team, the NCC Group and the Chromium vulnerability reward program.
Source: Associated Press