Security update available for Adobe Flash Player 04-May-12

[ronjor]

Quote:

Release date: May 4, 2012

Vulnerability identifier: APSB12-09

Priority: See table below

CVE number: CVE-2012-0779

Platform: All Platforms


Summary

Adobe released security updates for Adobe Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.7 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and 2.x. These updates address an object confusion vulnerability (CVE-2012-0779) that could cause the application to crash and potentially allow an attacker to take control of the affected system.
There are reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only.

Adobe recommends users of Adobe Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux update to Adobe Flash Player 11.2.202.235. Flash Player installed with Google Chrome was updated automatically, so no user action is required. Users of Adobe Flash Player 11.1.115.7 and earlier versions on Android 4.x devices should update to Adobe Flash Player 11.1.115.8. Users of Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and earlier versions should update to Flash Player 11.1.111.9.

https://www.adobe.com/support/securi...apsb12-09.html

Source.

Quote:

Originally Posted by Ars

Adobe has released an emergency update for its Flash Player that fixes a security bug that's being actively exploited to hijack Windows computers running the ubiquitous software.

Read more: http://arstechnica.com/business/news...hijack-pcs.ars

Download: http://www.adobe.com/go/getflash

[funkydude]

11.2 updates automatically, there's no need to download anything.

Quote:

Originally Posted by funkydude

11.2 updates automatically, there's no need to download anything.

There's no need but it is a valid option. One can update faster manually, sometimes. Also, for Portable Firefox, plugins' updates will likely be always installed by hand.

I disabled Flash auto update, btw. I prefer clean flash installations. I know it's tiresome, but it's more reliable too.

[kupo]

Today I started to uninstall Adobe Flash player since the only website I used that needs flash is youtube.com (I can easily use the HTML5 version although not all videos there are supported).