Adobe has released Flash Player 13.0.0.182 for Windows and Macintosh, Flash Player 11.2.202.350 for Linux. These updates address four critical-risk vulnerability that could cause the application to crash and potentially allow an attacker to remotely take control of the affected system.
These update also includes new features as well as enhancements and bug fixes related stability, performance, and device compatibility for Flash Player 13.0 and AIR 13.0.
Adobe recommends users update their product installations to the latest versions:
- Users of Adobe Flash Player 12.0.0.77 and earlier versions for Windows should update to Adobe Flash Player 13.0.0.182.
- Users of Adobe Flash Player 12.0.0.77 and earlier versions for Macintosh should update to Adobe Flash Player 13.0.0.182.
- Users of Adobe Flash Player 11.2.202.346 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.350.
- Flash Player installed with Google Chrome will automatically be updated to the latest Google Chrome version, which will include Adobe Flash Player 13.0.0.182 for Windows, Macintosh and Linux.
- Flash Player installed with Internet Explorer 10 for Windows 8 will automatically be updated to the latest Internet Explorer 10 version, which will include Adobe Flash Player 13.0.0.182 for Windows 8.
- Flash Player installed with Internet Explorer 11 for Windows 8.1 will automatically be updated to the latest Internet Explorer 11 version, which will include Adobe Flash Player 13.0.0.182 for Windows 8.1.
Overview
Flash Player 13.0 drives innovation for rich, engaging digital experiences with new features for cross-platform browser-based viewing of expressive rich internet applications, content, and videos across devices. This release provides access to the Flash Player 13.0 runtime for Windows desktop and Mac OS environments.
What's new in Adobe Flash Player 13.0?
Adobe Flash Player 13.0 Final includes:
Enhanced Supplementary Character Support for TextField:
Characters from the Basic Multilingual Plane (BMP) with Unicode code points between U+10000 and U+10FFFF nowl work correctly in TextField controls. This change greatly enlarges the code point range we support, and now includes characters like emoticons and complex CCJK characters.
Relocated Full Screen Video Warning to Top of Screen:
To reduce the impact of the dialog on the on-screen content, the dialog has been moved to the top of the screen.
New Stage3D Texture Wrapping Modes:
Developers can currently set the wrapping mode of a texture to either clamp or repeat. Using the repeat option will repeat the texture on both the U and V axis. However, in some use cases, you may only want to repeat the texture on either the u or v axis.
This is now possible with the introduction of two new parameters:
REPEAT_U_CLAMP_V and CLAMP_U_REPEAT_V
Stage3D Anti-Aliasing for Texture Rendering:
Anti-Aliasing is a useful for improving perceived image quality. Hardware based Multisampling Anti-Aliasing (MSAA) is now available on all desktop platforms. To enable MSAA, set the level from 0 to 4 using the new Context3D.setRenderToTexture() method.
0 = 1 subsample, no antialiasing
1 = 2 subsamples, minimal antialiasing
2 = 4 subsamples, medium quality antialiasing
3 = 8 subsamples, high quality antialiasing
4 = 16 subsamples, maximum quality antialiasing
GamePreview with Adobe AIR:
Adobe AIR’s new Game Preview feature (for Android platforms only) lets users try your game and experience it first hand without installing a separate application. Feature is not restricted to games built using AIR but is available to all developers, irrespective of the technology that you may use to build your application. The fact that the AIR runtime is installed on more than 50 million devices, greatly multiplies the chances of your game being previewed and subsequently installed by game enthusiasts.
Improved Packaging Engine - iOS (BETA)
The new packaging engine is now more stable and works fine with a lots of apps. We have added support for Action Script debugging and Advanced Telemetry support.
To enable this feature, please use "-useLegacyAOT no" in the ADT command, before the signing options. As of now, this feature is not available with FlashPro but it can be used with Flash builder by adding a parameter -useLegacyAOT under "Customize launch" option.
For a full list of features in Flash Player and AIR, including features introduced in previous releases, please review the document here.
Download Flash Player 13.0 Final
For a full description of the new features and improvements, system requirements, and the download links, see: Adobe Flash Player - Download Center. Download the files appropriate for you.
Security fixes:
This build contains the following security fixes:
- Fixed a use-after-free vulnerability that could result in arbitrary code execution (CVE-2014-0506).
- Fixed a buffer overflow vulnerability that could result in arbitrary code execution (CVE-2014-0507).
- Fixed a security bypass vulnerability that could lead to information disclosure (CVE-2014-0508).
- Fixed a cross-site-scripting vulnerability (CVE-2014-0509).
Update History
Flash Player 13.0.0.201 for Macintosh (April 17th, 2014)
- Fixed Flash Player Bugs: 3739504: [Mac] Compiler change causes Flash Player to crash on load.
Sources:
Adobe Flash Player 13 Release Notes
APSB14-09 Security updates available for Adobe Flash Player
Adobe Security Bulletins and Advisories
No comments:
Post a Comment