March 7, 2012
1
2 27 4

Adobe has released a new version of its Flash Player for Android that fixes some critical security bugs. The new version of Flash, which, incidentally, is also available for Windows, Linux and OS X, fixes security vulnerabilities in Flash Player 11.1.115.6 and earlier versions for Android 4.x, and Flash Player 11.1.111.6 and earlier versions for Android 3.x and 2.x. These vulnerabilities, if exploited, could cause a crash and potentially allow an attacker to take control of the affected phone or tablet.

The update fixes two problems – the first is a memory corruption vulnerability in Matrix3D, a part of Flash which is used to determine the position and orientation of a three-dimensional object, that could lead to unauthorized code execution. The second vulnerability patched is an integer error that can lead to information disclosure.

Don’t Panic

Although these vulnerabilities are seen as critical, Adobe has rated them as “priority 2” which means that there are currently no known exploits, and, based on previous experience, Adobe does not anticipate that exploits are imminent. As a result, Adobe is recommending users to install the update within the next 30 days.

Where to Download

If you have Android 4.0, you should update to Adobe Flash Player 11.1.115.7 by browsing to the Android Marketplace (now called Google Play Store) from your device. For those with Android 3.x and Android 2.x, you need Flash Player 11.1.111.7, which can be downloaded from the same location on the Play Store.

Gary Sims
Gary has been a tech writer for over a decade and specializes in open source systems. He has a Bachelor's degree in Business Information Systems.He has many years of experience in system design and development as well as system administration, system security and networking protocols. He also knows several programming languages, as he was previously a software engineer for 10 years.
Show 1 comments