Adobe Flash Player 16.0.0.296 Now Available for Download

Adobe has released Flash Player 16.0.0.296 for Windows and Mac, and Flash Player 11.2.202.440 for Linux. These updates address multiple critical security vulnerabilities that could potentially allow an attacker to take control of the affected system..


Adobe is aware of reports that an exploit for CVE-2015-0311 is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below, according to security bulletin (APSB15-03). Adobe recommends users update their product installations to the latest versions:
  • Users of Adobe Flash Player 16.0.0.287 and earlier versions for IE and Firefox (Windows) should update to Adobe Flash Player 16.0.0.296.
  • Users of Adobe Flash Player 16.0.0.287 and earlier versions for Mac should update to Adobe Flash Player 16.0.0.296.
  • Adobe Flash Player installed with Google Chrome will be automatically updated to the current version.
  • Adobe Flash Player installed for Internet Explorer on Windows 8/8.1 will be automatically updated to the current version.
  • Users of Adobe Flash Player 11.2.202.438 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.440.

Overview
Adobe Flash Player 16.0 drives innovation for rich, engaging digital experiences with new features for cross-platform browser-based viewing of expressive rich internet applications, content, and videos across devices. This release provides access to the Flash Player 16.0 runtime for Windows desktop and Mac OS environments. More information about Adobe Flash Player 16.0 available here.

Download Flash Player 16.0.0.296
The following downloads provide the Adobe Flash Player 16.0.0.296 installers for Windows, Linux and Mac OS X. Download the files appropriate for you:


Security fixes:
This build contains the following security fixes:
  • Fixed a use-after-free vulnerability that could lead to code execution (CVE-2015-0311).
  • Fixed a double-free vulnerability that could lead to code execution (CVE-2015-0312).

Sources:
Adobe Flash Player 16 Release Notes
Adobe Security Bulletins and Advisories
APSB15-03 Security updates available for Adobe Flash Player

No comments: