Download Adobe Flash Player 16.0.0.305 (Win and Mac)


Adobe has released Flash Player 16.0.0.305 for Windows and Mac, and Flash Player 11.2.202.444 for Linux. These updates address eighteen critical security vulnerabilities that could potentially allow an attacker to take control of the affected system.

Adobe is aware of reports that an exploit for CVE-2015-0313 is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below, according to security bulletin (APSB15-04). Adobe recommends users update their product installations to the latest versions:
  • Users of Adobe Flash Player 16.0.0.296 and earlier versions for IE and Firefox (Windows) should update to Adobe Flash Player 16.0.0.305.
  • Users of Adobe Flash Player 16.0.0.296 and earlier versions for Mac should update to Adobe Flash Player 16.0.0.305.
  • Adobe Flash Player installed with Google Chrome will be automatically updated to the current version.
  • Adobe Flash Player installed for Internet Explorer on Windows 8/8.1 will be automatically updated to the current version.
  • Users of Adobe Flash Player 11.2.202.440 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.442.

Overview
Adobe Flash Player 16.0 drives innovation for rich, engaging digital experiences with new features for cross-platform browser-based viewing of expressive rich internet applications, content, and videos across devices. This release provides access to the Flash Player 16.0 runtime for Windows desktop and Mac OS environments. More information about Adobe Flash Player 16.0 available here.

Download Flash Player 16.0.0.305
The following downloads provide the Adobe Flash Player 16.0.0.305 installers for Windows, Linux and Mac OS X. Download the files appropriate for you:


Security fixes:
This build contains the following security fixes:
  • Fixed use-after-free vulnerabilities that could lead to code execution (CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322).
  • Fixed memory corruption vulnerabilities that could lead to code execution (CVE-2015-0314, CVE-2015-0316, CVE-2015-0318, CVE-2015-0321, CVE-2015-0329, CVE-2015-0330).
  • Fixed type confusion vulnerabilities that could lead to code execution (CVE-2015-0317, CVE-2015-0319).
  • Fixed heap buffer overflow vulnerabilities that could lead to code execution (CVE-2015-0323, CVE-2015-0327).
  • Fixed a buffer overflow vulnerability that could lead to code execution (CVE-2015-0324).
  • Fixed null pointer dereference issues (CVE-2015-0325, CVE-2015-0326, CVE-2015-0328).

Sources:
Adobe Flash Player 16 Release Notes
Adobe Security Bulletins and Advisories
APSB15-04 Security updates available for Adobe Flash Player

No comments: