Adobe patches another critical Flash vulnerability


— 4:40 PM on December 29, 2015

2015 hasn't been kind to the Flash plugin. Adobe has released another emergency patch for its Flash products to address a critical vulnerability. Affected platforms include Flash for Google Chrome, Microsoft Edge, Internet Explorer 10 and 11, and Linux. Adobe AIR products for Linux, Windows, Macintosh, Android, and iOS are also at risk.

The Chrome and Edge browsers will be automatically updated, as will Internet Explorer for Windows 10 and Windows 8.x. Users of Linux, the Adobe Flash Player Desktop Runtime, and Adobe AIR will need to update Flash manually. The available updates address type confusion, integer overflow, use-after-free, and memory corruption vulnerabilities.

This emergency patch caps off a rough year for Flash. Adobe had to fix three zero-day exploits before the year hardly started, and addressed 79 security holes in an update just a few weeks ago, among other patches this year.

 
   
Register
Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.