JavaScript disabled. Please enable JavaScript to use My News, My Clippings, My Comments and user settings.

If you have trouble accessing our login form below, you can go to our login page.

If you have trouble accessing our login form below, you can go to our login page.

Election day security patches

Date

Brian Krebs

Zoom in on this story. Explore all there is to know.

Adobe has released a critical security update for its Flash Player and Adobe Air software that fixes at least seven dangerous vulnerabilities in these products. Updates are available for Windows, Mac,Linux and Android systems.

The update, part of Adobe's regularly scheduled patch cycle for Flash, brings Flash Player to version 11.5.502.110 on Windows and Mac systems (other OS users see graphic this page). Adobe urges users to grab the latest updates from its Flash Player Download Center, but that option pushes junk add-ons like McAfee VirusScan.

Instead, download the appropriate version for your system from Adobe's Flash Player Distribution page. Most users can find out what version of Flash they have installed by visiting this link.

The Flash Player installed with Google Chrome should soon be automatically updated to the latest Google Chrome version, which will include Flash Player 11.5.31.2 for Windows, Macintosh and Linux. Note that Windows users who browse the Web with Internet Explorerand another browser will need to apply the Flash update twice, once using IE and again with the other browser. Internet Explorer 10 users on Windows 8 can grab the update via Windows Update or from Microsoft's site, or wait for the browser to auto-update the plugin.

Adobe's advisory about this update is available here, including links to update AIR if you have that installed. An Adobe spokesperson said the company is not aware of any active attacks or exploits in the wild for any of the issues patched in this release. Nevertheless, it's a bad idea to delay Flash updates; the software's ubiquity makes it a primary target of malware and miscreants alike.

KrebsOnSecurity

3 comments so far

  • I can't wait until the web developers of the world grow up and stop forcing us to use this broken piece of rubbish.

    Hate to admit it but Jobs was right refusing to allow Flash on iOS.

    Commenter
    Peter
    Location
    Sydney
    Date and time
    November 07, 2012, 5:12PM
    • Don't just follow the crowd Peter.

      Jobs blocked Flash Player so people couldn't play games via the browser for free and would have to use the App Store so Apple got its 30% cut.

      This is evident because developers build Flash games which run on iOS, but only if they package them using Adobe AIR and sell them through the iTunes store. Hence Apple get their 30% cut.

      A google around you'll see that many games are built using Flash that run on iOS......

      Commenter
      Stephen
      Date and time
      November 08, 2012, 3:12PM
  • Adobe released a patch for vulnerabilities that no-one is known to have had a "crack" at. Why is this news?

    Commenter
    Tony
    Location
    Sydney
    Date and time
    November 08, 2012, 8:31AM

    Make a comment

    You are logged in as [Logout]

    All information entered below may be published.

    Error: Please enter your screen name.

    Error: Your Screen Name must be less than 255 characters.

    Error: Your Location must be less than 255 characters.

    Error: Please enter your comment.

    Error: Your Message must be less than 300 words.

    Post to

    You need to have read and accepted the Conditions of Use.

    Thank you

    Your comment has been submitted for approval.

    Comments are moderated and are generally published if they are on-topic and not abusive.