Skip to main content
  1. Home
  2. Computing
  3. News

Adobe desperately patches more holes in the sinking ship that is Flash

By

adobe finds another critical flaw in flash stock scott braut
Image used with permission by copyright holder
It seems like not a week goes by that Adobe’s aging Web platform doesn’t run into some sort of critical issue. In this case, Adobe has identified 18 vulnerabilities in the current version of Flash, one of which is already being exploited out on the Web.

Adobe groups the vulnerabilities into four different categories: integer overflow, use-after-free, heap overflow, and memory corruption. While the specifics of how these vulnerabilities are exploited is a technical subject best left for another day, what is important is the end goal. Attackers typically hide malicious code behind a Flash ad or interaction, and then use one of these errors to execute code your system believes is a proper Flash file.

Recommended Videos

The most prominent of these errors is corrected by update CVE-2016-1010, and is the only one Adobe identified in limited use already. The notes at the bottom credit Anton Ivanov of Kaspersky Labs in relation to this vulnerability, but not whether Ivanov discovered or proposed a solution to it.

Thankfully, Adobe has already rolled out a hot fix for these issues, and recommends updating to the desktop runtime version 21.0.0.182 for both Windows and Mac OS X. Users who rely on the Flash plugins built into browsers can sleep easy, Microsoft Edge, Chrome, and Internet Explorer all have an automatic update that will patch the new holes in the wall.

This should all sound familiar. In the final days of 2015, Adobe rolled out a patch that corrected (I can’t make this stuff up) 18 critical vulnerabilities, one of which was known to already be in use by attackers out in the world. It’s far from the first time either, as Flash is becoming more well known for exploits than anything else nowadays.

It should be abundantly clear at this point to the savvy Web surfer that Adobe Flash is bad news. It used to be the standard, but in the last few years has fallen into a state of shabby disrepair, and is all too often exploited by hackers, malware, and those who would challenge the safety of the friendly Internet. YouTube and other video streaming services have moved towards HTML5, Facebook’s head of security wants an end-of-life date for the platform, and all of Google’s ads will be heading the same way within the next two years.

Now is the time to stand up to broken, vulnerable software and demand better from the Internet. Uninstall today, and join the revolution.

Editors' Recommendations

Topics
Brad Bourque
Brad Bourque
Former Digital Trends Contributor
Brad Bourque is a native Portlander, devout nerd, and craft beer enthusiast. He studied creative writing at Willamette…
Samsung’s MacBook alternative is up to $700 off today
The Samsung Galaxy Book 4 Pro against a textured grey backdrop.

If you like the idea of the MacBook Air but don't own any other Apple products or don't want to be in the Apple ecosystem, then we're happy to inform you that there are some great alternatives. One example is the Galaxy Book4, which is equally thin and light and can still pack a punch when it comes to processing power. Even better, you can get it for much cheaper than the usual $900 since you get a direct $200 discount that brings it down to $700, plus you can get up to $508 of trade-in credit. So, you could potentially get it for as low as $192, assuming you get the best trade-in value.

Why you should buy the Galaxy Book4
At just 0.61-inch of thickness, the Galaxy Book4 comes pretty close to the thin size of the MacBook Air, so it's a very portable device, which is impressive since it comes with a larger 15.6-inch screen. Granted, the screen runs at an FHD resolution, which is a bit lower than the MacBook Air, but at that screen size, the difference isn't that big. Luckily, the keyboard is great to type on, and you can expect up to 15 hours of battery life, which is pretty good too.

Read more
Samsung is having a sale on huge gaming monitors — up to $1,000 off
Samsung Odyssey Ark in cockpit mode.

If you're the type of person who likes to have the best gear for their gaming setup, then one of the best upgrades you can do is getting yourself a massive ultra-wide monitor that adds another layer of immersion. Some of these monitors are truly behemoths, and they have a price tag to match, but luckily Samsung is running a great sale on large gaming monitors right now with some significant savings. Samsung makes some of the best monitors on the market, so you're in good hands if you decide to grab one. However, if you'd still like something different, check out these other great monitor deals.
49-inch Odyssey OLED G9 -- $1,200, was $1,800
 

If you're looking for an ultra-widescreen, then the Samsung Odyssey OLED G9 is the perfect option because it's chock full of great features. Besides the absolutely gorgeous OLED display, it runs a 2k resolution that can hit a whopping 240Hz refresh rate; you'll likely need one of the best GPUs to run it. It also has a low response time of 0.03ms GTG, as well as support for HDR10+ and coverage of 99% of the DCI color gamut. You can even split it into dual QHD monitors if you need to get work done and require two screens, so it's a very versatile monitor.

Read more
The Windows transition to Arm just found its missing puzzle piece
The new Surface Pro on a table.

The Windows transition to Arm has pushed forward at an impressive clip, with many of the most significant apps having built Arm64 versions. But there's been one major holdout, even up until Microsoft's recent Copilot+ announcement.

A little app called Slack.

Read more