The awaited new version of Adobe Flash Player was released a few days ago and the users have reasons to celebrate, because the developers have managed to patch many security issues. No less than 24 vulnerabilities have been addressed, and it was supposed to be released on Tuesday, but Adobe has included, on the last minute, a patch for the CVE-2016-1010 exploit that has been used by hackers in targeted attacks.
The exploit for CVE-2016-1010 was discovered by Kaspersky Labs, as it was being used in the wild and Adobe has admitted in its security newsletter that the company was aware of this vulnerability. Other security vulnerabilities used by attackers were CVE-2016-1010, CVE-2016-0963 and CVE-2016-0993 and the hackers were able to launch malicious code on computers by exploiting an integer overflow, while the use-after-free vulnerabilities that have been fixed are identified as CVE-2016-0987, CVE-2016-0988, CVE-2016-0990, CVE-2016-0991, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996 and CVE-2016-1000. The memory corruption vulnerabilities that have been fixed are the ones with CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0986, CVE-2016-0989, and CVE-2016-1005. There was another heap overflow problem (CVE-2016-1001) which was fixed as well.
The affected versions were:
– Adobe Flash Player Desktop Runtime 22.214.171.1246 and earlier in Windows and Macintosh;
– Adobe Flash Player Extended Support Release 126.96.36.1999 and earlier in Windows and Macintosh;
– Adobe Flash Player for Google Chrome 188.8.131.526 and earlier in Windows, Macintosh, Linux and ChromeOS;
– Adobe Flash Player for Microsoft Edge and Internet Explorer 11 184.108.40.2066 and earlier in Windows 10;
– Adobe Flash Player for Internet Explorer 11 220.127.116.116 and earlier in Windows 8.1;
– Adobe Flash Player for Linux 18.104.22.1689 and earlier in Linux;
– AIR Desktop Runtime 22.214.171.1240 and earlier in Windows and Macintosh;
– AIR SDK 126.96.36.1990 and earlier in Windows, Macintosh, Android and iOS;
– AIR SDK & Compiler 188.8.131.520 and earlier in Windows, Macintosh, Android and iOS;
– AIR for Android 184.108.40.206 and earlier.
Every techie needs a pair of sick headphones. Neurogadget recommends these Audio Technica Professional Studio Monitor Headphones for both their quality and their cool-factor.