-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Reference: CERT-EU Security Advisory 2014-035

Title: Security updates available for Adobe Flash Player

Version history:
09.04.2014 Initial publication

Summary
=======

Adobe has released security updates for Adobe Flash Player 12.0.0.77 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.346 and earlier versions for Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installations to the latest versions. 
 
CVE number: CVE-2014-0506, CVE-2014-0507, CVE-2014-0508, CVE-2014-0509

CVSS v2 Base Score:10.0 (HIGH) (AV:N/AC:L/Au:N/C:C/I:C/A:C)


Vulnerable systems
==================

Adobe Flash Player 12.0.0.77 and earlier versions for Windows and Macintosh
Adobe Flash Player 11.2.202.346 and earlier versions for Linux
Adobe AIR 4.0.0.1628 and earlier versions for Android
Adobe AIR 4.0.0.1628 SDK and earlier versions
Adobe AIR 4.0.0.1628 SDK & Compiler and earlier versions
 

What can you do?
================

Adobe recommends users update their product installations to the latest versions [1]:

Users of Adobe Flash Player 12.0.0.77 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 13.0.0.182
Users of Adobe Flash Player 11.2.202.346 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.350.
Adobe Flash Player 12.0.0.77 installed with Google Chrome will automatically be updated to the latest Google Chrome version, which will include Adobe Flash Player 13.0.0.182 for Windows, Macintosh and Linux.
Adobe Flash Player 12.0.0.77 installed with Internet Explorer 10 will automatically be updated to the latest Internet Explorer 10 version, which will include Adobe Flash Player 13.0.0.182 for Windows 8.0.
Adobe Flash Player 12.0.0.77 installed with Internet Explorer 11 will automatically be updated to the latest Internet Explorer 11 version, which will include Adobe Flash Player 13.0.0.182 for Windows 8.1.
Users of Adobe AIR 4.0.0.1628 and earlier versions for Android should update to Adobe AIR 13.0.0.83.
Users of the Adobe AIR 4.0.0.1628 SDK and earlier versions should update to the Adobe AIR 13.0.0.83 SDK.
Users of the Adobe AIR 4.0.0.1628 SDK & Compiler and earlier versions should update to the Adobe AIR 13.0.0.83 SDK & Compiler.


More information
================

[1] http://helpx.adobe.com/security/products/flash-player/apsb14-09.html

Best regards,

CERT-EU (http://cert.europa.eu)
Phone: +32.2.2990005 / e-mail: cert-eu@ec.europa.eu
PGP KeyID 0x46AC4383
FP: 9011 6BE9 D642 DD93 8348 DAFA 27A4 06CA 46AC 4383
Privacy Statement:
http://cert.europa.eu/cert/plainedition/en/cert_privacy.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=rzrk
-----END PGP SIGNATURE-----