Adobe has issued security fixes addressing 12 vulnerabilities affecting its Flash Player and AIR for Windows, Macintosh and Linux platforms.
A number of the bugs patched were classified as critical, which if exploited could allow an attacker to execute malicious code on a machine. Vulnerable versions of Flash Player for Windows and Macintosh systems include 14.0.0.179 and earlier, as well as 13.0.0.241 and earlier, according to a recent Adobe Security Bulletin.
Flash Player 14.0.0.177 and earlier versions for Google Chrome on all platforms, including Linux, should be updated. The AIR updates affect versions 14.0.0.178 on Windows and Macintosh platforms, as well as iOS devices, while version 14.0.0.179 should be updated on Android devices.
The updates address security bypass, use-after-free, memory corruption, heap buffer overflow, same origin policy and memory leakage vulnerabilities.