Adobe has announced the release of Adobe Flash Player 20.0.0.235 security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.
Users who have enabled auto-update for the Flash Player desktop runtime will be receiving version 16.0.0.296 beginning on January 24. This version includes a fix for CVE-2015-0311. Adobe expects to have an update available for manual download during the week of January 26, and we are working with our distribution partners to make the update available in Google Chrome and Internet Explorer 10 and 11. For more information on updating Flash Player please refer to this post.
Affected software versions
Vulnerability Details
- These updates resolve heap buffer overflow vulnerabilities that could lead to code execution
- These updates resolve memory corruption vulnerabilities that could lead to code execution
- These updates resolve security bypass vulnerabilities
- These updates resolve a stack overflow vulnerability that could lead to code execution
- These updates resolve a type confusion vulnerability that could lead to code execution
- These updates resolve an integer overflow vulnerability that could lead to code execution
- These updates resolve a buffer overflow vulnerability that could lead to code execution
- These updates resolve use-after-free vulnerabilities that could lead to code execution
Update Adobe Flash Player 20.0.0.235
sudo apt-get update sudo apt-get install flashplugin-installer
Verify Version
http://www.adobe.com/products/flash/about/comments powered by Disqus