Adobe sent out patches for Flash and Shockwave Players, Reader, Acrobat, ColdFusion, LiveCycle Data Services and BlazeDS, which fix security vulnerabilities that attackers could remotely exploit.
Adobe fixed a critical vulnerability in Flash Player for Windows, Mac, Linux, Solaris and Android. The bug is in version 10.3.181.26 for desktop systems; an update for Android is due shortly. In contrast to many Flash vulnerabilities, this time Reader and Acrobat are not affected.
Adobe fixed 13 vulnerabilities in versions 8.x, 9.x and 10.x for Windows and Mac. The version number of Adobe Reader and Acrobat versions with a sandbox has been incremented to 10.1. The new version will distribute and install automatically via the automatic update function, as will the Flash update.
Version 18.104.22.1686 of Adobe’s Shockwave Player fixes 24 security-related bugs. There are also updates for LiveCycle Data Services and BlazeDS which fix two vulnerabilities. A hotfix for ColdFusion 9.0.1, 9.0, 8.0.1 and 8.0 for Windows, Mac and Linux takes care of two vulnerabilities.
Adobe’s Flash Player update has already seen Google update the stable and beta versions of the Chrome browser which bundles Flash.