Thursday, July 16, 2015

Update Flash won't fix security flaws!

Another Flash update in Debian today, but Flash is still insecure- there's still an active 0-day exploit- and blocked by default by Mozilla.

Saturday, July 11, 2015

Update Flash fix security flaws!

Adobe pushes emergency fix for active 0-day.

No, this isn't a duplicate of the previous post.

It looks like I'll be saying exactly the same thing next week too, according to Brian Krebs.
For the second time in a week, Adobe Systems Inc. says it plans fix a zero-day vulnerability in its Flash Player software that came to light after hackers broke into and posted online hundreds of gigabytes of data from Hacking Team, a controversial Italian company that’s long been accused of helping repressive regimes spy on dissident groups.

In an advisory published late Friday evening, Adobe said it plans to issue another Flash patch the week of July 13, 2015.