With a lot of concerns regarding security flaws in the Adobe Flash Player, it is very important to know every bit of information on what security updates have been recently released for such freeware on popular operating systems, such as Windows, Mac, Linux and Chrome. These updates address critical vulnerabilities that would allow attackers to take control over your computer system.
One particular risk that Adobe knows of is the CVE-2016-1019 being actively exploited on systems that run on Windows 10 and earlier with Flash version 126.96.36.1996 and earlier. Specifically, the affected versions include:
- Adobe Flash Player Desktop Runtime 188.8.131.52 and earlier for Windows and Mac
- Adobe Flash Player Extended Support Release 184.108.40.2063 and earlier for Windows and Mac
- Adobe Flash Player 220.127.116.11 for Google Chrome on Windows, Mac, Linux and Chrome OS
- Adobe Flash Player 18.104.22.168 and earlier for Microsoft Edge and Internet Explorer 11 on Windows 10
- Adobe Flash Player 22.214.171.124 and earlier for Internet Explorer 11 on Windows 8.1
- Adobe Flash Player 126.96.36.1997 and earlier for Linux
- AIR Desktop Runtime 188.8.131.52 and earlier for Windows and Mac
- AIR SDK 184.108.40.206 and earlier for Windows, Mac, Android and iOS
- AIR SDK & Compiler 220.127.116.11 and earlier for Windows, Mac, Android and iOS
To be able to verify which version of Adobe Flash Player is installed on your computer or mobile system, access the “About Flash Player” page or right-click on content that use the freeware and then select “About Adobe (or Macromedia) Flash Player” from the menu. If you have multiple browsers, then you should perform the check for each of them. As for the Adobe AIR, you can follow the instructions you will find in the Adobe AIR TechNote.
Adobe categorizes its updates with priority ratings and recommends users to install them as soon as possible. Basically, these updates solidify a mitigation against JIT spraying attacks that could bypass memory layout randomization mitigations. They resolve type confusion, use-after-free, memory corruption and stack overflow vulnerabilities that could lead to code execution. Also, they resolve security bypass vulnerabilities and security risks in the directory search path that is used to find resources that could lead to code execution.
For those using Flash Player version 11.2.x or later for Windows or version 11.3.x or later for Mac and have selected the option “Allow Adobe to install updates” will receive automatic updates. For those who do not allow such option, they can install updates through the update mechanism within the product when prompted.
For more news and information about Adobe Flash Player updates, visit this page.
Every techie needs a pair of sick headphones. Neurogadget recommends these Audio Technica Professional Studio Monitor Headphones for both their quality and their cool-factor.