Skip to main content

Adobe issues emergency patch for yet another Flash exploit

A hacker inputting code into a system.
Image used with permission by copyright holder
Have you updated Flash recently? Even if you have, you might want to make sure you’re up to date, as yesterday Adobe issued an emergency patch addressing several critical vulnerabilities that the company says “could potentially allow an attacker to take control of the affected system.”

The vulnerabilities affect those using the plugin in Windows, Mac, and Linux, including those versions provided in browsers like Chrome. And at least one of these bugs is currently known to those who walk on the darker side of the Web, with Adobe saying that the patch fixes an exploit that is being used in “limited, targeted attacks.”

While that exploit is singled out as particularly nasty since it can be triggered simply by visiting the wrong website, the rest could be just as dangerous. The vulnerabilities include “13 use-after-free vulnerabilities, four memory corruption vulnerabilities, and one type-confusion vulnerability,” as noted by CSO.

If you’re running anything earlier than Flash version 20.0.0.267, you’ll need to update. If you aren’t sure, head over to Adobe’s About Flash Player page, which will show you the version you’re running. The security bulletin issued by the company provides instructions on how to update the software.

This is far from the first time this year that such a patch has been released. Earlier this year we reported that the Italian spyware firm Hacking Team had itself been hacked. Among the files distributed as a result were multiple major security flaws in Flash that the group had kept to itself in order to use in its work.

These types of vulnerabilities, along with improvements in various alternative Web technologies, have led to many companies deciding to abandon Flash as a whole. Several sites including YouTube have dropped Flash in favor of HTML5 video, while in July, Facebook’s security chief called for Adobe to set an end-of-life date for the aging technology.

It seems that 2015 may have been the beginning of the end for Flash, but what does 2016 hold in store?

Editors' Recommendations

Kris Wouk
Former Digital Trends Contributor
Kris Wouk is a tech writer, gadget reviewer, blogger, and whatever it's called when someone makes videos for the web. In his…
A massive PC upgrade could arrive in 2025
DDR5 memory installed into a motherboard.

Rumors are starting to circulate about DDR6 memory, and it could arrive sooner than you think. A rumor posted by DarkmontTech shows some preliminary targets for next-gen DDR6 memory, and it sounds like a massive upgrade.

There isn't any information about where this slide is from, but it claims that DDR6 is on track for release sometime next year with a massive bump to speed, which lines up with some early rumors about DDR6 from a few years ago. The slide says that speeds of 8.8 GT/s to 17.6 GT/s are expected for the initial version, and that could climb all the way up to 21 GT/s. For reference, DDR5 operates between 4.8 GT/s and 6.4 GT/s, with some newer kits reaching up to 8.4 GT/s.

Read more
ExpressVPN Deals: Save 49% when you sign up today
Express VPN logo.

With so much of our world going online, grabbing yourself a VPN can be pretty important, especially because it can help protect you from spying eyes or people stealing your data. Not only that, but most VPNs offer a suite of products and can help you get around geo-blocked content, and one of the best VPNs on the market, ExpressVPN, is having a great sale that gives you all that and more. If you're not sure if ExpressVPN is right for you, you'll be happy to know that you get a 30-day money-back guarantee, which is ideal given that there currently isn't any Express VPN free trial. And, if ExpressVPN is not quite what you're looking for, you can check out some of these VPN deals as well, although be sure to read through this article first to see everything ExpressVPN has to offer.

Today's Best ExpressVPN Deal

Read more
Get $900 off this HP gaming PC with an RTX 4070 Ti today
The HP Omen 40L desktop sitting on a coffee table.

If you want to save a ton of money on a pre-built gaming PC, take a look at this offer from HP that's coming as part of Memorial Day sales. The Omen 40L (which includes an RTX 4070 Ti) would usually run you $2,550, but it can be yours now for just $1,650. That's a savings of $900. Tap the button below to see the machine over at HP, or continue reading for a better overview of its stats as well as how this prebuilt gaming PC ran when we got our hands on it.

Why you should buy the Omen 40L Desktop
In addition to having an RTX 4070 Ti, the Omen 40L Desktop comes with an Intel Core i7 processor, 16GB of RAM, and a full terabyte of SSD storage. This is enough to play nearly all of the best PC games of today and, presumably, the conceivable "tomorrow" as well. There will always be outliers and equipment-pushers, of course, but you should expect some longevity here, even beyond the 1-year standard warranty from HP.

Read more