crp Posted April 11, 2013 Share Posted April 11, 2013 i am shocked SHOCKED that there is a security update for adobe Flash. I simply refuse to believe it. Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 11, 2013 Share Posted April 11, 2013 Unless there is an out-of-band update, at least we can now plan on Flash updates on the 2nd Tuesday of the month along with the Microsoft Security updates. Thanks, Corrine! That's good to know. Adam Quote Link to comment Share on other sites More sharing options...
Corrine Posted April 11, 2013 Author Share Posted April 11, 2013 From http://xkcd.com/1197/: 2 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted April 12, 2013 Share Posted April 12, 2013 No more Adobe Flash for Linux, in case you didn't know... From Adobe's download page: NOTE: Adobe Flash Player 11.2 will be the last version to target Linux as a supported platform. Adobe will continue to provide security backports to Flash Player 11.2 for Linux. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted April 13, 2013 Share Posted April 13, 2013 I corrected all my Adobe Flash security weakness in both Win XP and Win 7 tonight. I just removed Adobe Flash from both operating systems. And as Inspector Clouseau might say, "Problem eh-sol-ved. I can go play with my meenkey now." Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 15, 2013 Share Posted April 15, 2013 That's certainly one way to handle it if you never have to navigate a flash website, view a flash video, etc. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted April 15, 2013 Share Posted April 15, 2013 I usually don't surf the web in Windows. Quote Link to comment Share on other sites More sharing options...
therock247uk Posted April 20, 2013 Share Posted April 20, 2013 /me does 1 Quote Link to comment Share on other sites More sharing options...
Corrine Posted May 14, 2013 Author Share Posted May 14, 2013 The newest versions are as follows: Windows and Macintosh: 11.7.700.202 Linux: 11.2.202.285 Adobe AIR 3.7.0.1860 Warning: Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install Google Drive. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7:Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8:Flash Player for Internet Explorer 10: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from the Download Center at Update for Internet Explorer Flash Player for Windows 8 Release Preview (KB2758994). Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe 1 Quote Link to comment Share on other sites More sharing options...
zlim Posted May 15, 2013 Share Posted May 15, 2013 Check your version of flash installed http://www.adobe.com/software/flash/about/ I do this for IE. I can check it easily in FF under Tools/addons/plugins but I don't use IE so I'm not sure how I'd check it there. I just drive the browser to the adobe page and it tells me I'm current. Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted May 16, 2013 Share Posted May 16, 2013 Yes, makes a difference with Firefox and Internet Explorer. I generally don't even install Flash for Internet Explorer, just for the main browser(s) that I use. Quote Link to comment Share on other sites More sharing options...
Corrine Posted July 9, 2013 Author Share Posted July 9, 2013 It is Patch Tuesday and that includes Adobe Flash Player and Adobe AIR: Update Information The newest versions are as follows: Windows and Macintosh: 11.8.800.94 Linux: 11.2.202.297 Android 4x: 11.1.115.69 Android 3x: 11.1.111.64 Adobe AIR: 3.8 Release date: July 9, 2013 Vulnerability identifier: APSB13-17 CVE number: CVE-2013-3344, CVE-2013-3345, CVE-2013-3347 Platform: All Platforms Flash Player Update Instructions Warning: Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install Google Drive. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7:Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1:Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted July 10, 2013 Share Posted July 10, 2013 I used to not like Mondays... http://youtu.be/8yteMugRAc0 Nowadays, I'm beginning to really not like Tuesdays. Quote Link to comment Share on other sites More sharing options...
Corrine Posted July 10, 2013 Author Share Posted July 10, 2013 Only the 2nd Tuesday of the month, Eric. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted July 10, 2013 Share Posted July 10, 2013 It just seems like it's every Tuesday, huh? Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted July 11, 2013 Share Posted July 11, 2013 LOL! Yeah, Patch Tuesday and 4th Thursday sometimes...and of course, there is this from Wikipedia: "Exploit Wednesday" Many exploitation events are seen shortly after the release of a patch.[citation needed] By analyzing the patch, exploitation developers can more easily figure out how to exploit the underlying vulnerability,[8] and attack the systems that have not been patched. Therefore the term "Exploit Wednesday" was coined. Also, starting to abuse an unpatched exploitation entry point on this day gives malicious code writers the longest period of time before a fix is supplied to users. Malware authors can sit on the vulnerability of a new exploitation entry point until after a given Patch Tuesday, knowing that there will be an entire month before Microsoft releases any patch to fix it. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted July 11, 2013 Share Posted July 11, 2013 Aren't there any happy days anymore? Quote Link to comment Share on other sites More sharing options...
crp Posted July 11, 2013 Share Posted July 11, 2013 Aren't there any happy days anymore? NO Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted July 11, 2013 Share Posted July 11, 2013 Happy days are here again. The skies above are clear again... Quote Link to comment Share on other sites More sharing options...
Corrine Posted September 10, 2013 Author Share Posted September 10, 2013 Flash Player The newest versions are as follows: Windows and Macintosh: 11.8.800.168 Linux: 11.2.202.310 Android 4x: 11.1.115.81 Android 3x: 11.1.111.73 Adobe AIR: 3.8.1430 (http://get.adobe.com/air/) Release date: September 10, 2013 Vulnerability identifier: APSB13-21 CVE number: CVE-2013-3361, CVE-2013-3362, CVE-2013-3363, CVE-2013-5324 Platform: All Platforms Download information: Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe Shockwave Player: Release date: September 10, 2013 Vulnerability identifier: APSB13-23 CVE number: CVE-2013-3359 and CVE-2013-3360 Platform: Windows and Macintosh The newest version 12.0.4.144 is available here: http://get.adobe.com/shockwave/. As usual, watch for any pre-checked add-ons not needed for the update. 2 Quote Link to comment Share on other sites More sharing options...
Corrine Posted November 12, 2013 Author Share Posted November 12, 2013 Adobe has released bug and security updates for Adobe Flash Player for Windows, Macintosh and Linux. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10, 11: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe AIR Download Center 1 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted November 13, 2013 Share Posted November 13, 2013 Thanks Corrine! Snagged 'em! Quote Link to comment Share on other sites More sharing options...
Corrine Posted December 10, 2013 Author Share Posted December 10, 2013 Adobe has released security updates for Flash Player, AIR and Shockwave Player. Details are available in my blog post at Adobe Flash Player, AIR and Shockwave Player Security Updates. To update -- Flash Player: Direct downloads (no unwanted extras) for Windows 7 and earlier: Internet Explorer - http://download.macr...11_active_x.exe Plugin-based browsers (Firefox etc) - http://download.macr...r_11_plugin.exe Flash Player Uninstaller (if needed) : http://download.macr...lash_player.exe AIR: AIR Download Center Shockwave Player: http://get.adobe.com/shockwave/ 1 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted December 11, 2013 Share Posted December 11, 2013 Thanks Corrine! Quote Link to comment Share on other sites More sharing options...
Corrine Posted January 14, 2014 Author Share Posted January 14, 2014 Adobe has released security updates for Adobe Flash Player 11.9.900.170 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.332 and earlier versions for Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Numerous bug fixes are also included in the update. Flash Player: Direct downloads (no unwanted extras) for Windows 7 and earlier: Internet Explorer - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_active_x.exe Plugin-based browsers (Firefox etc) - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_plugin.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Microsoft Security Advisory (2755801). The update for Windows RT and Windows RT 8.1 is available via Windows Update. Flash Player Uninstaller (if needed) : http://download.macr...lash_player.exe AIR: AIR Download Center 1 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted January 14, 2014 Share Posted January 14, 2014 Thanks Corrine! Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted January 27, 2014 Share Posted January 27, 2014 I just saw this Adobe security update for Digital Editions: Security update available for Adobe Digital Editions Release date: January 22, 2014 Vulnerability identifier: APSB14-03 CVE number: CVE-2014-0494 Platform: Windows and Macintosh Summary Adobe has released a security update for Adobe Digital Editions for Windows and Macintosh. This update addresses a vulnerability in the software that could cause the application to crash and potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installation using the instructions provided in the solution section below. Affected software versions Adobe Digital Editions version 2.0.1 for Windows and Macintosh. Solution Adobe recommends users update their product by downloading the installer from http://www.adobe.com...s/download.html and following the instructions provided in the installation dialogue. It says that it is a Priority 3 - which means: "This update resolves vulnerabilities in a product that has historically not been a target for attackers. Adobe recommends administrators install the update at their discretion." Adobe Digital Editions 3.0 Installers Download Digital Edition 3.0 Macintosh (16.9 MB) Download Digital Edition 3.0 Windows (5.9 MB) Quote Link to comment Share on other sites More sharing options...
Corrine Posted February 4, 2014 Author Share Posted February 4, 2014 Adobe has released security updates for Adobe Flash Player 12.0.0.43 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.335 and earlier versions for Linux. Security Bulletin: APSB14-04 It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10, 11: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. 1 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted February 17, 2014 Share Posted February 17, 2014 Wasn't there just update to cover the two vulnerabilities from the CERT announcement and posted on Adobe on February 11, 2014 ... just saw them on CERT. Quote Link to comment Share on other sites More sharing options...
Corrine Posted February 17, 2014 Author Share Posted February 17, 2014 Yes. I posted the Shockwave Player update separately at Adobe Shockwave Player Critical Security Update rather than in the Flash Player thread. It can be merged here though if that's a better fit. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.