Adobe issues non-critical Flash update

Adobe issues non-critical Flash update

Summary: [UPDATE] A new version of Flash fixes two vulnerabilities in the Windows, Mac and Linux versions. They're not super-high priority.

TOPICS: Security

Adobe has released updates to Flash Player to address two vulnerabilities in the product on Windows, Mac and Linux.
Click on image to install current version of Adobe Flash Player

Adobe ranks the severity of these vulnerabilities as "important," rather than "critical." They define important as "[a] vulnerability, which, if exploited would compromise data security, potentially allowing access to confidential data, or could compromise processing resources in a user's computer." It is not critical, which could allow an attacker to run malicious code.

Adobe has assigned them priority 2 on Windows and Mac, and priority 3 on Linux. This means that there are no known exploits and that Mac and Windows users should install it "soon (for example, within 30 days)." Linux admins may apply the update at their discretion.

A new stable release of Google Chrome has already been released today. The Flash update is not specifically listed as being included, but some of the vulnerabilities are unspecified.

[UPDATE: Microsoft has released the update and a security advisory. Users can run Windows Update to apply it.]

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • The difference in response when Flash and non critical is in the title....

    Had it have been critical the trolls would be out in force.
  • I wish it would go away

    Im sick of having to patch all the systems on the domain. Its like its a weekly event these days. I wish i could get rid of the flash plugin all together but a lot of our clients use flash for work site inductions.
    • If you're sick of patching things

      You should really think of a new career. Every piece of software will continue to get patches until it isn't supported anymore.
      Michael Alan Goff
      • But some software will get patched more frequently than others.

        Flash is one of those programs where people are still finding important / critical security problems far, far too often for what you'd think would be a more "mature" codebase by now.
        • There is a more mature codebase

          That's why 2013 had fewer vulnerabilities found than 2012 in Adobe Flash.
          Michael Alan Goff
          • But still far too many.

            2013 saw "fewer" Flash vulnerabilities than 2012, and 1 million degrees C is "cooler" than 2 million degrees C.

            Big deal.