Adobe has issued security fixes addressing 12 vulnerabilities affecting its Flash Player and AIR for Windows, Macintosh and Linux platforms.
A number of the bugs patched were classified as critical, which if exploited could allow an attacker to execute malicious code on a machine. Vulnerable versions of Flash Player for Windows and Macintosh systems include 220.127.116.11 and earlier, as well as 18.104.22.168 and earlier, according to a recent Adobe Security Bulletin.
Flash Player 22.214.171.124 and earlier versions for Google Chrome on all platforms, including Linux, should be updated. The AIR updates affect versions 126.96.36.199 on Windows and Macintosh platforms, as well as iOS devices, while version 188.8.131.52 should be updated on Android devices.
The updates address security bypass, use-after-free, memory corruption, heap buffer overflow, same origin policy and memory leakage vulnerabilities.