Just over 24 hours ago, a major security vulnerability affecting all versions of Flash for Windows, Mac and Linux was discovered and reported to Adobe. Hopefully you’ve already uninstalled Flash Player, but whether or not you got around to scrubbing Flash from your computer, we’re pleased to report that Adobe has released a patch for the vulnerability.
Adobe says: “These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2015-7645 is being used in limited, targeted attacks, and recommends users update their product installations to the latest version using the instructions referenced in the security bulletin.”
You can access the security bulletin in question at this link on Adobe’s website.
Once you’ve reached the bulletin, scroll down the page until you see a chart under the Availability header of the Solution section. Six of the seven links are listed as Priority 1 (the highest possible rating), so be sure to download any relevant updates depending on which platform and browser you’re using.
Here’s a more detailed list of solutions with links as well:
- Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows and Macintosh update to Adobe Flash Player 220.127.116.11 by visiting the Adobe Flash Player Download Center or via the update mechanism within the product when prompted .
- Adobe recommends users of the Adobe Flash Player Extended Support Release update to version 18.104.22.168 by visiting http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html.
- Adobe recommends users of the Adobe Flash Player for Linux update to Adobe Flash Player 22.214.171.1240 by visiting the Adobe Flash Player Download Center.
- Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 126.96.36.199 on Windows, Macintosh and Linux, and 188.8.131.52 on Chrome OS.
- Adobe Flash Player installed with Microsoft Edge for Windows 10 will be automatically updated to the latest version, which will include Adobe Flash Player 184.108.40.206.
- Adobe Flash Player installed with Internet Explorer 10 and 11 for Windows 8.0 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 220.127.116.11.
- Please visit the Flash Player Help page for assistance in installing Flash Player.
Of course, you could also simply keep Adobe Flash Player uninstalled, and you won’t have to worry about any future vulnerabilities affecting your devices ever again. But if you simply can’t part with Flash, update your software ASAP.