In four separate security bulletins, Adobe named the impacted products as:
- Adobe Photoshop CC, versions 16.1.1 (2015.1.1) and earlier; and Adobe Bridge CC, versions 6.1.1 and earlier.
- Versions of Adobe Flash Player Desktop Runtime, Adobe Flash Player Extended Support Release, Adobe Flash Player for Google Chrome, Adobe Flash Player for Microsoft Edge and Internet Explorer 11, Adobe Flash Player for Internet Explorer 11, Adobe Flash Player for Linux, AIR Desktop Runtime, AIR SDK and AIR SDK & Compiler
- Adobe Experience Manager, versions 5.6.1, 6.0.0 and 6.1.0
- Adobe Connect, versions 9.4.2 and earlier
The Photoshop and Bridge patches fix memory corruption vulnerabilities that could result in code execution. The Flash Player fixes resolve a variety of vulnerabilities that could also result in code execution. The Experience Manager patches address flaws that could lead to information disclosure. And finally, the Connect repairs fix important input validation and content spoofing issues.