crp Posted April 11, 2013 Posted April 11, 2013 i am shocked SHOCKED that there is a security update for adobe Flash. I simply refuse to believe it. Quote
ross549 Posted April 11, 2013 Posted April 11, 2013 Unless there is an out-of-band update, at least we can now plan on Flash updates on the 2nd Tuesday of the month along with the Microsoft Security updates. Thanks, Corrine! That's good to know. Adam Quote
V.T. Eric Layton Posted April 12, 2013 Posted April 12, 2013 No more Adobe Flash for Linux, in case you didn't know... From Adobe's download page: NOTE: Adobe Flash Player 11.2 will be the last version to target Linux as a supported platform. Adobe will continue to provide security backports to Flash Player 11.2 for Linux. Quote
V.T. Eric Layton Posted April 13, 2013 Posted April 13, 2013 I corrected all my Adobe Flash security weakness in both Win XP and Win 7 tonight. I just removed Adobe Flash from both operating systems. And as Inspector Clouseau might say, "Problem eh-sol-ved. I can go play with my meenkey now." Quote
Guest LilBambi Posted April 15, 2013 Posted April 15, 2013 That's certainly one way to handle it if you never have to navigate a flash website, view a flash video, etc. Quote
V.T. Eric Layton Posted April 15, 2013 Posted April 15, 2013 I usually don't surf the web in Windows. Quote
Corrine Posted May 14, 2013 Author Posted May 14, 2013 The newest versions are as follows: Windows and Macintosh: 11.7.700.202 Linux: 11.2.202.285 Adobe AIR 3.7.0.1860 Warning: Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install Google Drive. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7:Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8:Flash Player for Internet Explorer 10: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from the Download Center at Update for Internet Explorer Flash Player for Windows 8 Release Preview (KB2758994). Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe 1 Quote
zlim Posted May 15, 2013 Posted May 15, 2013 Check your version of flash installed http://www.adobe.com/software/flash/about/ I do this for IE. I can check it easily in FF under Tools/addons/plugins but I don't use IE so I'm not sure how I'd check it there. I just drive the browser to the adobe page and it tells me I'm current. Quote
Guest LilBambi Posted May 16, 2013 Posted May 16, 2013 Yes, makes a difference with Firefox and Internet Explorer. I generally don't even install Flash for Internet Explorer, just for the main browser(s) that I use. Quote
Corrine Posted July 9, 2013 Author Posted July 9, 2013 It is Patch Tuesday and that includes Adobe Flash Player and Adobe AIR: Update Information The newest versions are as follows: Windows and Macintosh: 11.8.800.94 Linux: 11.2.202.297 Android 4x: 11.1.115.69 Android 3x: 11.1.111.64 Adobe AIR: 3.8 Release date: July 9, 2013 Vulnerability identifier: APSB13-17 CVE number: CVE-2013-3344, CVE-2013-3345, CVE-2013-3347 Platform: All Platforms Flash Player Update Instructions Warning: Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install Google Drive. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7:Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1:Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe Quote
V.T. Eric Layton Posted July 10, 2013 Posted July 10, 2013 I used to not like Mondays... http://youtu.be/8yteMugRAc0 Nowadays, I'm beginning to really not like Tuesdays. Quote
Corrine Posted July 10, 2013 Author Posted July 10, 2013 Only the 2nd Tuesday of the month, Eric. Quote
V.T. Eric Layton Posted July 10, 2013 Posted July 10, 2013 It just seems like it's every Tuesday, huh? Quote
Guest LilBambi Posted July 11, 2013 Posted July 11, 2013 LOL! Yeah, Patch Tuesday and 4th Thursday sometimes...and of course, there is this from Wikipedia: "Exploit Wednesday" Many exploitation events are seen shortly after the release of a patch.[citation needed] By analyzing the patch, exploitation developers can more easily figure out how to exploit the underlying vulnerability,[8] and attack the systems that have not been patched. Therefore the term "Exploit Wednesday" was coined. Also, starting to abuse an unpatched exploitation entry point on this day gives malicious code writers the longest period of time before a fix is supplied to users. Malware authors can sit on the vulnerability of a new exploitation entry point until after a given Patch Tuesday, knowing that there will be an entire month before Microsoft releases any patch to fix it. Quote
V.T. Eric Layton Posted July 11, 2013 Posted July 11, 2013 Aren't there any happy days anymore? Quote
V.T. Eric Layton Posted July 11, 2013 Posted July 11, 2013 Happy days are here again. The skies above are clear again... Quote
Corrine Posted September 10, 2013 Author Posted September 10, 2013 Flash Player The newest versions are as follows: Windows and Macintosh: 11.8.800.168 Linux: 11.2.202.310 Android 4x: 11.1.115.81 Android 3x: 11.1.111.73 Adobe AIR: 3.8.1430 (http://get.adobe.com/air/) Release date: September 10, 2013 Vulnerability identifier: APSB13-21 CVE number: CVE-2013-3361, CVE-2013-3362, CVE-2013-3363, CVE-2013-5324 Platform: All Platforms Download information: Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe Shockwave Player: Release date: September 10, 2013 Vulnerability identifier: APSB13-23 CVE number: CVE-2013-3359 and CVE-2013-3360 Platform: Windows and Macintosh The newest version 12.0.4.144 is available here: http://get.adobe.com/shockwave/. As usual, watch for any pre-checked add-ons not needed for the update. 2 Quote
Corrine Posted November 12, 2013 Author Posted November 12, 2013 Adobe has released bug and security updates for Adobe Flash Player for Windows, Macintosh and Linux. It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10, 11: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe AIR Download Center 1 Quote
Corrine Posted December 10, 2013 Author Posted December 10, 2013 Adobe has released security updates for Flash Player, AIR and Shockwave Player. Details are available in my blog post at Adobe Flash Player, AIR and Shockwave Player Security Updates. To update -- Flash Player: Direct downloads (no unwanted extras) for Windows 7 and earlier: Internet Explorer - http://download.macr...11_active_x.exe Plugin-based browsers (Firefox etc) - http://download.macr...r_11_plugin.exe Flash Player Uninstaller (if needed) : http://download.macr...lash_player.exe AIR: AIR Download Center Shockwave Player: http://get.adobe.com/shockwave/ 1 Quote
Corrine Posted January 14, 2014 Author Posted January 14, 2014 Adobe has released security updates for Adobe Flash Player 11.9.900.170 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.332 and earlier versions for Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Numerous bug fixes are also included in the update. Flash Player: Direct downloads (no unwanted extras) for Windows 7 and earlier: Internet Explorer - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_active_x.exe Plugin-based browsers (Firefox etc) - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_plugin.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Microsoft Security Advisory (2755801). The update for Windows RT and Windows RT 8.1 is available via Windows Update. Flash Player Uninstaller (if needed) : http://download.macr...lash_player.exe AIR: AIR Download Center 1 Quote
Guest LilBambi Posted January 27, 2014 Posted January 27, 2014 I just saw this Adobe security update for Digital Editions: Security update available for Adobe Digital Editions Release date: January 22, 2014 Vulnerability identifier: APSB14-03 CVE number: CVE-2014-0494 Platform: Windows and Macintosh Summary Adobe has released a security update for Adobe Digital Editions for Windows and Macintosh. This update addresses a vulnerability in the software that could cause the application to crash and potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installation using the instructions provided in the solution section below. Affected software versions Adobe Digital Editions version 2.0.1 for Windows and Macintosh. Solution Adobe recommends users update their product by downloading the installer from http://www.adobe.com...s/download.html and following the instructions provided in the installation dialogue. It says that it is a Priority 3 - which means: "This update resolves vulnerabilities in a product that has historically not been a target for attackers. Adobe recommends administrators install the update at their discretion." Adobe Digital Editions 3.0 Installers Download Digital Edition 3.0 Macintosh (16.9 MB) Download Digital Edition 3.0 Windows (5.9 MB) Quote
Corrine Posted February 4, 2014 Author Posted February 4, 2014 Adobe has released security updates for Adobe Flash Player 12.0.0.43 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.335 and earlier versions for Linux. Security Bulletin: APSB14-04 It is recommended that you either use the auto-update mechanism within the product when prompted, or my preference, the direct download links. Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_plugin.exe Windows XP, Vista and 7: Flash Player For Internet Explorer 7, 8, 9, 10, 11: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_12_active_x.exe Windows 8 and 8.1: Flash Player for Internet Explorer 10 and 11: Microsoft updated Security Advisory 2755801. If you do not have Automatic Updates enabled, the Flash Player update can be downloaded from Microsoft Security Advisory: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10: July 9, 2013. 1 Quote
Guest LilBambi Posted February 17, 2014 Posted February 17, 2014 Wasn't there just update to cover the two vulnerabilities from the CERT announcement and posted on Adobe on February 11, 2014 ... just saw them on CERT. Quote
Corrine Posted February 17, 2014 Author Posted February 17, 2014 Yes. I posted the Shockwave Player update separately at Adobe Shockwave Player Critical Security Update rather than in the Flash Player thread. It can be merged here though if that's a better fit. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.