Adobe Flash Player Security Update

Adobe today released new versions of its Flash Player for Windows, Mac OS X, and Linux systems.  According to Adobe’s Security Bulletin [APSB12-18],

These updates address a vulnerability (CVE-2012-1535) that could cause the application to crash and potentially allow an attacker to take control of the affected system.

The new versions are 11.3.300.271, for Windows and Mac systems, and 11.2.202.238 for Linux systems.  (As I noted back in April, Adobe is no longer providing new Linux versions of Flash Player, but it is still releasing security updates.)  Adobe says that the affected versions of the software are Adobe Flash Player 11.3.300.270 and earlier versions for Windows, Macintosh and Linux operating systems.  Flash Player for Android is not affected by this vulnerability.

It appears that there are limited exploits of this vulnerability “in the wild”.  At present, these seem to be targeted at the Active X version of Flash Player for Windows Internet Explorer.  However, other versions are also vulnerable, and Flash Player has always been an attractive target for the Bad Guys, because it is so widely installed across platforms.

Windows users who have the silent update option enabled should receive the new version automatically.  Windows or Mac OS X users can get the update using the update mechanism built into the software.  Alternatively, the new version for Windows, Linux, and Mac OS X is available from Adobe’s download page.  Windows users should remember that they may need two updates: one for Internet Explorer, and one for any other browser that they have installed.

I recommend that you update your systems as soon as you conveniently can.

3 Responses to Adobe Flash Player Security Update

  1. […] Google has released a new version of its Chrome browser, 21.0.1180.79, for all platforms: Mac OS X, Windows, Linux, and Chrome Frame.  This update incorporates security fixes for the bundled Flash Player, corresponding to Adobe’s update today. […]

  2. […] addition to the fixes released yesterday for its Flash Player, Adobe also released updated versions of its Reader and Acrobat software for […]

  3. […] for Linux, it is 11.2.202.238.  (The Linux version appears to be the same one mentioned in the most recent Flash Player update.)  Google released a new version of the Chrome browser today that updates the embedded Flash […]

%d bloggers like this: