Skip to main content
  1. Home
  2. Computing
  3. News

Adobe desperately patches more holes in the sinking ship that is Flash

By

adobe finds another critical flaw in flash stock scott braut
Image used with permission by copyright holder
It seems like not a week goes by that Adobe’s aging Web platform doesn’t run into some sort of critical issue. In this case, Adobe has identified 18 vulnerabilities in the current version of Flash, one of which is already being exploited out on the Web.

Adobe groups the vulnerabilities into four different categories: integer overflow, use-after-free, heap overflow, and memory corruption. While the specifics of how these vulnerabilities are exploited is a technical subject best left for another day, what is important is the end goal. Attackers typically hide malicious code behind a Flash ad or interaction, and then use one of these errors to execute code your system believes is a proper Flash file.

Recommended Videos

The most prominent of these errors is corrected by update CVE-2016-1010, and is the only one Adobe identified in limited use already. The notes at the bottom credit Anton Ivanov of Kaspersky Labs in relation to this vulnerability, but not whether Ivanov discovered or proposed a solution to it.

Thankfully, Adobe has already rolled out a hot fix for these issues, and recommends updating to the desktop runtime version 21.0.0.182 for both Windows and Mac OS X. Users who rely on the Flash plugins built into browsers can sleep easy, Microsoft Edge, Chrome, and Internet Explorer all have an automatic update that will patch the new holes in the wall.

This should all sound familiar. In the final days of 2015, Adobe rolled out a patch that corrected (I can’t make this stuff up) 18 critical vulnerabilities, one of which was known to already be in use by attackers out in the world. It’s far from the first time either, as Flash is becoming more well known for exploits than anything else nowadays.

It should be abundantly clear at this point to the savvy Web surfer that Adobe Flash is bad news. It used to be the standard, but in the last few years has fallen into a state of shabby disrepair, and is all too often exploited by hackers, malware, and those who would challenge the safety of the friendly Internet. YouTube and other video streaming services have moved towards HTML5, Facebook’s head of security wants an end-of-life date for the platform, and all of Google’s ads will be heading the same way within the next two years.

Now is the time to stand up to broken, vulnerable software and demand better from the Internet. Uninstall today, and join the revolution.

Editors' Recommendations

Topics
Brad Bourque
Brad Bourque
Former Digital Trends Contributor
Brad Bourque is a native Portlander, devout nerd, and craft beer enthusiast. He studied creative writing at Willamette…
Best Buy laptop deals: Cheap laptops starting at $139
Apple M1 MacBook Air open on a desk with plants in the background.

With Best Buy almost always among the best places to buy a laptop online, it’s worth checking out what sort of laptop deals the retail giant currently has taking place. It regularly discounts laptop models by top laptop brands like Dell, HP, Lenovo, and even Apple. We’ve tracked down all of the Best Buy laptop deals worth shopping right now, and you can read more about them below. They include some massive savings on an Acer Chromebook, as well as some discounts on new MacBook Airs. If you’re uncertain what sort of laptop best suit your needs, you can also consult our laptop buying guide.
Acer Chromebook 315 — $139, was $199

The Acer Chromebook 315 is one of the larger Chromebooks you’ll find, as its display comes in at an impressive 15.6 inches. This makes it a great option for people who want some extra screen real estate, but who still like to do their work on the go. The Acer Chromebook 315 has plenty of power for a Chromebook, and is made as much for comfort as functionality. Its slightly larger size will come in handy when doing creative work and an integrated numeric keyboard gives it the feel of working on a desktop. The Acer Chromebook 315 is able to reach up to 10 hours of battery life on a single charge, meaning you can work on the go all day without needing to take a charger with you.

Read more
The latest Windows update is breaking VPN connections
Windows Update running on a laptop.

Microsoft has acknowledged that the Windows security updates for April 2024 (KB5036893 for Windows 11, KB5036892 for Windows 10) are causing disruptions to virtual private network (VPN) connections across various client and server platforms. According to information on the Windows health dashboard, devices running Windows may experience VPN connection failures following the installation of either the April 2024 security update or the April 2024 non-security preview update.

The company has also stated that it is actively investigating user reports regarding these issues and will share more details in the coming days. The impacted Windows versions include Windows 11, Windows 10, and Windows Server 2008 onward.

Read more
Delidding your CPU: What it is and why you should do it
A delidded Ryzen 7000 CPU.

Delidding a CPU is the process of removing its integrated heat spreader, or IHS. This is quite a drastic procedure and runs the risk of damaging or even breaking your processor. But -- and it's a big but -- the temperature improvements, especially for CPUs that typically run hot, can be massive. The result is a processor that runs cooler, quieter, and often faster, too.

It's not something you should go into without due care, but it's not as dangerous as it once was. With dedicated tools to make the process easier and safer, delidding your CPU is no longer only reserved for the most die-hard of overclockers.
What is delidding your CPU?
You might think of the large, silver metal surface of your CPU as the processor itself, but that's not exactly true. In fact, the real brains of the chip lie under that hunk of nickel-plated copper or aluminium. That miniature die is what you actually need to run a PC -- the integrated heat spreader on top of it is purely there to make sure it stays cool during operation. It's also there to ensure compatibility with a range of coolers, and to make it less likely that you'll accidentally break your chip by overtightening the cooler's mounting mechanism.

Read more