Adobe Systems has big problems with its player, and it’s continuously working on fixing critical bugs that could allow hackers to take control of affected devices. Unfortunately, the Flash Player is losing ground fast and its popularity decreases with each passing day, but Adobe is not ready to kill it yet. Recently, there have been discovered 28 vulnerabilities and Adobe has updated the player on all platforms.
A month ago, Flash Player has received new fixes and emergency patches and last time, Adobe has released a security update that patched 29 issues. Fourteen of them were memory corruption vulnerabilities that could allow attackers to execute arbitrary code in the context of the affected application, while eleven other vulnerabilities and an integer overflow could also allow remote control.
Adobe warned that the remaining three bugs would allow attackers to steal information from affected devices, after bypassing security protections on the operating system.
The new version of Flash Player for Windows and Mac OS X is 22.214.171.124 and this version is also available for Google Chrome, Microsoft Edge and Internet Explorer 11. Linux users have received version 126.96.36.1995 of Flash Player, while Air SDK and Compiler was updated to version 188.8.131.527 on Windows, which includes a patch for only one vulnerability, CVE-2016-6936.
It’s worth mentioning that the ereader software Adobe Digital Editions was also update to version 4.5.2 and it patched eight flaws, of which seven were memory corruption issues leading to code execution. The remaining bug could trigger an exploitable use-after-free condition. This update is available for Windows, Mac OS X, iOS and Android.
You should know that today, September 23, Adobe will turn off the download links to current and older versions, and a company spokeswoman has said that this is part of a process of “updating and rearranging some of our adobe.com pages.” Users who will want to download the latest version of the Flash Player, will have to do it via a separate page.