Adobe to issue emergency Flash patch2016-04-07 02:36 by Daniela
Adobe is expected to release a security patch for Adobe Flash Player this week. It will fix a critical vulnerability (CVE-2016-1019) in version 220.127.116.11 and earlier that "could cause a crash and potentially allow an attacker to take control of an affected system".
The flaw, affects Flash Player version 18.104.22.168 on Windows, Mac, Linux and Chrome OS, according to an advisory published by Adobe. The company claims that the bug is now being "actively exploited" in the wild.
Flash Player version 22.214.171.124 includes a mitigation that temporarily prevents exploitation of the vulnerability. Adobe advises all Flash users to install the update immediately if it is not already applied. It can be downloaded online or within the Flash Player updater utility.
Chrome and Microsoft Edge will update Flash automatically when new versions are available; users just need to restart the browser to get it.
Read more -here-