News

Adobe releases patch for critical vulnerability in Flash Player

By admin
Spread the love

Adobe has released a patch for the Flash Player browser plug-in. This is a critical vulnerability that allowed an attacker to perform remote code execution on a system. It’s the third security patch Adobe is releasing for the Player this year, and possibly the last.

The vulnerability is known as CVE-2020-9746. According to Adobe, this is a ‘critical leak’. It is a null pointer dereference vulnerability that occurs when a program writes to memory with a null pointer. In this way it is possible to perform arbitrary code execution, Adobe writes.

The vulnerability is in the browser plug-in and the desktop software. These are versions older than 32.0.0.433, in both the Adobe Flash Desktop Runtime for Windows, macOS and Linux, the browser versions for Chrome and version 32.0.0.387 of Flash for Edge and Internet Explorer 11. Adobe says it has now become a update for the leak. Users receive it automatically, but can also download it manually.

The patch is the third to be released in 2020 for a Flash Player vulnerability. It may also be the last security patch ever for the software. This will be phased out as of January 1, 2021. The software is then end-of-life and will no longer receive security updates.

You might also like
News

Rumor: Apple is working on its own applications based on a large language model

News

EU Council determines position on security requirements for digital products

News

Samsung develops first GDDR7 chips, mentions bandwidths of up to 32Gbit/s per pin

News

Meta introduces open source language model Llama 2, works on PCs and phones

News

Nvidia releases GeForce RTX 4060 Ti variant with 16GB memory

News

Logitech acquires stream controller maker Loupedeck