Just over 24 hours ago, a major security vulnerability affecting all versions of Flash for Windows, Mac and Linux was discovered and reported to Adobe. Hopefully you’ve already uninstalled Flash Player, but whether or not you got around to scrubbing Flash from your computer, we’re pleased to report that Adobe has released a patch for the vulnerability.

FROM EARLIER: Adobe confirms major Flash vulnerability, and the only way to protect yourself is to uninstall Flash

Adobe says: “These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2015-7645 is being used in limited, targeted attacks, and recommends users update their product installations to the latest version using the instructions referenced in the security bulletin.”

You can access the security bulletin in question at this link on Adobe’s website.

Once you’ve reached the bulletin, scroll down the page until you see a chart under the Availability header of the Solution section. Six of the seven links are listed as Priority 1 (the highest possible rating), so be sure to download any relevant updates depending on which platform and browser you’re using.

Here’s a more detailed list of solutions with links as well:

  • Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows and Macintosh update to Adobe Flash Player 19.0.0.226 by visiting the Adobe Flash Player Download Center or via the update mechanism within the product when prompted [1].
  • Adobe recommends users of the Adobe Flash Player Extended Support Release update to version 18.0.0.255 by visiting http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html.
  • Adobe recommends users of the Adobe Flash Player for Linux update to Adobe Flash Player 11.2.202.540 by visiting the Adobe Flash Player Download Center.
  • Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 19.0.0.226 on Windows, Macintosh and Linux, and 19.0.0.225 on Chrome OS.
  • Adobe Flash Player installed with Microsoft Edge for Windows 10 will be automatically updated to the latest version, which will include Adobe Flash Player 19.0.0.226.
  • Adobe Flash Player installed with Internet Explorer 10 and 11 for Windows 8.0 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 19.0.0.226.
  • Please visit the Flash Player Help page for assistance in installing Flash Player.

Of course, you could also simply keep Adobe Flash Player uninstalled, and you won’t have to worry about any future vulnerabilities affecting your devices ever again. But if you simply can’t part with Flash, update your software ASAP.

Comments