June updates for Flash and Air close a critical hole
Adobe has closed just one hole on its June patch day; however, the hole is critical and has caused a plethora of updates. The memory error, discovered and reported confidentially by Google's security team, affects all versions of Flash Player and Adobe AIR. Attackers can potentially exploit the hole to gain control of systems.
Traditionally, holes in Flash are a prized commodity with cyber-criminals and therefore users should update to the fixed version 11.7.700.224 as soon as possible. For Mac OS X, Adobe has released an update to version 11.7.700.225, while the latest version under Linux is now 184.108.40.2061. Those who use Google Chrome or Internet Explorer 10 (under Windows 8) will automatically receive the Flash Player updates. Adobe has also updated Flash for Android, where the latest versions are now 220.127.116.11 for Android 4 and version 18.104.22.168 for older Android systems.
The fixed version of Adobe AIR for Windows and Android is Adobe AIR 22.214.171.1240, and version 126.96.36.1990 is the latest update for Mac OS X. Adobe has also patched the corresponding SDKs, the version numbers for which are identical.
The company has warned those who use Flash version 10 that version 11.7.x will become the next Extended Support version when patch day comes round again. This means that the just released security patches will be the last patches for version 10; the relevant download links can be found in the advisory link above.