Product
Release date: September 13, 2016
Last updated: October 4, 2016
Vulnerability identifier: APSB16-29
Priority: See table below
CVE number: CVE-2016-4271, CVE-2016-4272, CVE-2016-4274, CVE-2016-4275, CVE-2016-4276, CVE-2016-4277, CVE-2016-4278, CVE-2016-4279, CVE-2016-4280, CVE-2016-4281, CVE-2016-4282, CVE-2016-4283, CVE-2016-4284, CVE-2016-4285, CVE-2016-4287, CVE-2016-6921, CVE-2016-6922, CVE-2016-6923, CVE-2016-6924, CVE-2016-6925, CVE-2016-6926, CVE-2016-6927, CVE-2016-6929, CVE-2016-6930, CVE-2016-6931, CVE-2016-6932
Platform: Windows, Macintosh, Linux and ChromeOS
Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.
Product |
Affected Versions |
Platform |
Adobe Flash Player Desktop Runtime |
22.0.0.211 and earlier |
Windows and Macintosh |
Adobe Flash Player Extended Support Release |
18.0.0.366 and earlier |
Windows and Macintosh |
Adobe Flash Player for Google Chrome |
22.0.0.211 and earlier |
Windows, Macintosh, Linux and ChromeOS |
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 |
22.0.0.211 and earlier |
Windows 10 and 8.1 |
Adobe Flash Player for Linux |
11.2.202.632 and earlier |
Linux |
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
Updated Versions |
Platform |
Priority rating |
Availability |
|
Adobe Flash Player Desktop Runtime |
23.0.0.162 |
Windows and Macintosh |
1 |
|
Adobe Flash Player Extended Support Release |
18.0.0.375 |
Windows and Macintosh |
1 |
|
Adobe Flash Player for Google Chrome |
23.0.0.162 |
Windows, Macintosh, Linux and ChromeOS |
1 |
|
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 |
23.0.0.162 |
Windows 10 and 8.1 |
1 |
|
Adobe Flash Player for Linux |
11.2.202.635 |
Linux |
3 |
[1] Users of Flash Player 11.2.x or later for Windows, or Flash Player 11.3.x or later for Macintosh, who have selected the option to 'Allow Adobe to install updates' will receive the update automatically. Users who do not have the 'Allow Adobe to install updates' option enabled can install the update via the update mechanism within the product when prompted.
September 13, 2016: Removed CVE-2016-4182, CVE-2016-4237 and CVE-2016-4238, which were inadvertently included in the original version of this bulletin.
October 4, 2016: Added Björn Ruytenberg to the Acknowledgments section.
Sign in to your account