Adobe acknowledges ‘critical vulnerability’ with latest Flash Player version, promises fix next week [U: Fix available]
[Update 10/16: Somewhat sooner than expected, Adobe has released a new version of Flash available here.]
Here’s a heads-up to Mac users with Adobe Flash Player installed. Adobe has posted a security bulletin this week advising Mac, Windows, and Linux users of a known security issue with the latest version of the Flash Player plug-in, version 188.8.131.52 and earlier. In the security advisory, Adobe details that the ‘critical vulnerability’ in Flash Player could potentially cause system crashes and allow attackers “to take control of the affected system.”
Amazon may have been Apple’s target when it unveiled its iBooks Store alongside the iPad in 2010, but the digital retail giant’s latest move is helping fulfill Steve Jobs’ vision of a web without Flash. Amazon Advertising issued an update to its technical guidelines today declaring that it will stop accepting Flash-based ads starting next month. Adobe cited “recent browser setting updates from Google Chrome, and existing browser settings from Mozilla Firefox and Apple Safari” that interfere with displaying Flash ads.
Adobe has issued a security update for its Flash Player on OS X, Windows, and Linux. The company says in a security bulletin on its website that this update addresses a critical security vulnerability that could allow an attacker to gain control and take over an affected system.
Apple today has confirmed that is updating its web plug-in blocking mechanism in OS X to disable all versions of Adobe Flash Player prior to the most recent, which is version 184.108.40.206. On older systems, all versions of Flash prior to 220.127.116.111 are blocked.
Apple has issued a new update for Adobe’s Flash Player browser plugin. The update fixes “a recently-identified Adobe Flash Player web plug-in vulnerability,” according to Apple’s website. Users will be automatically prompted to install the update when visiting a page that uses Flash Player.
The prompt in Safari will take users to the Flash Player download page on Adobe’s website. Users who haven’t yet seen the prompt can also go there to download the update now.
Due to a security flaw discovered in its Flash Player software, Adobe released an update to the web plugin earlier this week. Today Apple confirmed that it had updated its plugin blacklist for OS X to stop the system from using a version of Flash Player older than 18.104.22.168 (or 22.214.171.124 on older systems).
According to Apple’s product security team:
Due to security issues in older versions, Apple has updated the web plug-in blocking mechanism to disable all versions prior to Flash Player 126.96.36.199 and 188.8.131.52.
Adobe released a critical security update to its Flash Player plug-in (version 184.108.40.206) on Tuesday that addresses an exploit that put machines at risk of being remotely accessed by attackers. You can grab the latest version of Flash Player here (OS X and Windows) or check for updates in the System Preferences app… or you could remove Flash altogether with Adobe’s uninstaller.