6 vulnerabilities in Flash Player and AIR could leave users open to hackers. Updates are available.
Adobe has issued updates to its Adobe Integrated Runtime (AIR) and Flash Player products to address vulnerabilities in them. The affected products are Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux; Flash Player 184.108.40.206 and earlier versions for Android 4.x; and Flash Player 220.127.116.11 and earlier versions for Android 3.x and 2.x.
The Security Bulletin (APSB12-19) describes six vulnerabilities. Four of the bugs fixed are memory corruption vulnerabilities that could lead to code execution. One is an integer overflow vulnerability that also could lead to code execution. The last is a cross-domain information leak vulnerability.