Skip to main content
  1. Home
  2. Computing
  3. News

Adobe desperately patches more holes in the sinking ship that is Flash

By

adobe finds another critical flaw in flash stock scott braut
Image used with permission by copyright holder
It seems like not a week goes by that Adobe’s aging Web platform doesn’t run into some sort of critical issue. In this case, Adobe has identified 18 vulnerabilities in the current version of Flash, one of which is already being exploited out on the Web.

Adobe groups the vulnerabilities into four different categories: integer overflow, use-after-free, heap overflow, and memory corruption. While the specifics of how these vulnerabilities are exploited is a technical subject best left for another day, what is important is the end goal. Attackers typically hide malicious code behind a Flash ad or interaction, and then use one of these errors to execute code your system believes is a proper Flash file.

Recommended Videos

The most prominent of these errors is corrected by update CVE-2016-1010, and is the only one Adobe identified in limited use already. The notes at the bottom credit Anton Ivanov of Kaspersky Labs in relation to this vulnerability, but not whether Ivanov discovered or proposed a solution to it.

Thankfully, Adobe has already rolled out a hot fix for these issues, and recommends updating to the desktop runtime version 21.0.0.182 for both Windows and Mac OS X. Users who rely on the Flash plugins built into browsers can sleep easy, Microsoft Edge, Chrome, and Internet Explorer all have an automatic update that will patch the new holes in the wall.

This should all sound familiar. In the final days of 2015, Adobe rolled out a patch that corrected (I can’t make this stuff up) 18 critical vulnerabilities, one of which was known to already be in use by attackers out in the world. It’s far from the first time either, as Flash is becoming more well known for exploits than anything else nowadays.

It should be abundantly clear at this point to the savvy Web surfer that Adobe Flash is bad news. It used to be the standard, but in the last few years has fallen into a state of shabby disrepair, and is all too often exploited by hackers, malware, and those who would challenge the safety of the friendly Internet. YouTube and other video streaming services have moved towards HTML5, Facebook’s head of security wants an end-of-life date for the platform, and all of Google’s ads will be heading the same way within the next two years.

Now is the time to stand up to broken, vulnerable software and demand better from the Internet. Uninstall today, and join the revolution.

Editors' Recommendations

Topics
Brad Bourque
Brad Bourque
Former Digital Trends Contributor
Brad Bourque is a native Portlander, devout nerd, and craft beer enthusiast. He studied creative writing at Willamette…
The best MacBook to buy in 2024
Apple MacBook Pro 16 downward view showing keyboard and speaker.

With M3 chips outfitted across the entire MacBook range, you might be wondering which is the best MacBook to buy in 2024. Figuring it out isn't always easy, and buying the newest MacBook might not be the right decision based on your needs. Apple has several tiers of performance, as well as various sizes, which can further complicate the matter.

What’s more, you can also still get M1 and M2 MacBooks, some from Apple’s own website and some from third-party retailers. But are they still worth your money? Our guide should help you decide.

Read more
The 4 best Raspberry Pi alternatives in 2024
Inside a Raspberry Pi.

When it comes to powerful and reliable mini-computers, one of the most popular options is the Raspberry Pi. In fact, this particular PC gets most of the mini-CPU fanfare, but that doesn’t mean it’s the only small computer worth considering. If you’re thinking about investing in a bite-sized machine, we’ve put together this list of four mini PCs in direct competition with Raspberry Pi.

Read more
Best 2-in-1 laptop deals: Turn your laptop into a tablet for $349
Lenovo Yoga 9i 14 Gen 7 laptop sits on a small desk folded like a tent.

If you find that your traditional laptop isn't quite doing it for you in terms of workflow, then you might want to consider taking some of what the best tablets and the best laptops have and combining them together in the form of 2-in-1 laptops. These can offer a ton of versatility to your workflow, such as being able to use them in handheld mode for drawing or presenting, as well as the fact that most, if not all, are touch-enabled, so you don't even have to use a mouse if you don't want to.
There are, of course, a ton of great choices out there, but some of the best 2-in-1 laptops can get quite expensive, especially when you're buying them from some of the best laptop brands out there. That's why we've gone out and looked for our favorite 2-in-1 laptop deals to help save you some effort. We've pulled from HP laptop deals, Dell laptop deals, the classic 2-in-1 Surface Pro deals, and more. Check them out below.

Asus Chromebook Plus 2-in-1 -- $349, was $499

Read more