Adobe Systems, not to be left out of this month’s patch-fest, has issued several security updates for its software products. For most users, the significant update is for Adobe’s Flash Player; versions 10.1.53.64 and earlier are affected. The player is very widely installed; it is the media player primarily used by sites such as YouTube. The vulnerability addressed by the patch is rated Critical by Adobe; further details are in the Security Bulletin. The new version, 10.1.82.76, can be downloaded, for all platforms (Mac OS X, Linux, Windows, Solaris) from the Flash Player Download Center. Windows users should note that there is one version for use with Internet Explorer, and another for use with other browsers; this means that if you use both Internet Explorer and Firefox, for example, you need both updates.
Similarly, the Adobe AIR product, versions 2.0.2.x and earlier, needs to be patched for this same vulnerability; the new version, 2.0.3, can be downloaded here.
Adobe also released security updates for two other products. One hotfix update is for ColdFusion and is rated Important; the details are here. The other, rated Critical, is for Flash Media Server; the Security Bulletin has the details.
If you have Flash Player installed (and most of you do), I recommend that you install the relevant updates as soon as you can. Because the player is supported on multiple platforms, and is very widely installed, it is a very tempting target for the Bad Guys.