Story 2015-06-10 ATX9 Security updates for Adobe Flash Player flaws that could lead to info theft, malware attacks

Security updates for Adobe Flash Player flaws that could lead to info theft, malware attacks

by
in security on (#ATX9)
story imageAdobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address 13 vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installations to the latest versions:

Linux users should update to version 11.2.202.466
Windows and Macintosh users should update to version 18.0.0.160
Extended Support Release for Windows and Macintosh is 13.0.0.292.*

Users of Internet Explorer on Windows 8.x and Google Chrome on Windows, Linux and Mac will receive the Flash Player update for their respective browser automatically. Adobe also released updates for the AIR runtime on Windows, Mac and Android, as well AIR SDK and Compiler, because these programs bundle Flash Player.

History has shown that attackers are quick to target new Flash flaws after a fix becomes available for them. Earlier this year, attackers started exploiting a Flash Player vulnerability just one week after Adobe released a patch for it.
Reply 6 comments

just uninstall/disable flash (Score: 3, Informative)

by gravis@pipedot.org on 2015-06-10 12:27 (#AV3Z)

you are better off just uninstalling flash if you can or disable it if can't be removed. most everyone has switched to html5 players so unless you are a flash game junkie, there is really no reason to have it anymore.

Re: just uninstall/disable flash (Score: 1)

by axsdenied@pipedot.org on 2015-06-10 14:40 (#AVE4)

Completely agree. I reinstalled linux few months ago and completely forgot to install flash. Didn't even realise it was not there until I read this article.
Flash = RIP

Re: just uninstall/disable flash (Score: 1)

by wootery@pipedot.org on 2015-06-10 16:25 (#AVPC)

Flash is something that's occasionally unavoidable, and yes, it should be disabled unless it's really wanted. Online casinos are all Flash-based, for instance, and HTML5's DRM'ed video hasn't yet replaced Silverlight and Flash for 'premium' video streaming (Netflix and co).

Re: just uninstall/disable flash (Score: 2, Informative)

by bryan@pipedot.org on 2015-06-11 03:54 (#AXEE)

Running with NoScript will keep the plugin mostly disabled. NoScript shows a static placeholder in its place so that, if you decide that you want it, you can easily activate the one specific element by clicking it.

OS-specific Flash download page (Score: 0)

by Anonymous Coward on 2015-06-10 17:24 (#AVTC)

Re: OS-specific Flash download page (Score: 0)

by Anonymous Coward on 2015-06-11 18:32 (#B029)

thanks brah