Adobe patches critical security flaw in Flash

 

Gallery

By Stewart Mitchell

Posted on 6 Mar 2012 at 09:00

Adobe has issued two critical out-of-band updates for Flash.

Although the company said it did not know of any attacks using the flaws, it classed the upgrades as a priority because “these vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system”.

According to Adobe, the patch addresses flaws in Adobe Flash Player 11.1.102.62 and earlier versions for Windows, Macintosh, Linux and Solaris, and users should update to Adobe Flash Player 11.1.102.63.

Mobile versions were also affected. “Users of Adobe Flash Player 11.1.115.6 and earlier versions on Android 4.x devices should update to Adobe Flash Player 11.1.115.7,” the company said in its security bulletin. “Users of Adobe Flash Player 11.1.111.6 and earlier versions for Android 3.x and earlier versions should update to Flash Player 11.1.111.7.”

The flaws were first pointed out by Google security staff and the patches are already included in a Chrome update, but the updated versions will cover people using other browsers.