-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Reference: CERT-EU Security Advisory 2012-0108 Title: Security update available for Adobe Flash Player [1] Version history: 22.08.2012 Initial publication Summary ======= Adobe has released security updates for Adobe Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.11 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and 2.x. These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system. [1] CVE Numbers: CVE-2012-4163, CVE-2012-4164, CVE-2012-4165, CVE-2012-4166, CVE-2012-4167, CVE-2012-4168 Adobe recommends users update their product installations to the latest versions. Vulnerable systems ================== Adobe Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux operating systems Adobe Flash Player 11.1.115.11 and earlier versions for Android 4.x Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and 2.x Adobe AIR 3.3.0.3670 and earlier versions for Windows and Macintosh Adobe AIR 3.3.0.3690 SDK (includes AIR for iOS) and earlier versions Adobe AIR 3.3.0.3650 and earlier versions for Android What can you do? ================ Fixes are available [1]. What to tell your users? ======================== Normal security best practices apply. Especially, inform your Web users to be cautious about following links to sites that are provided by unfamiliar or suspicious sources. Users are to be aware not to click on the link in suspicious emails to immediately forward the suspicious email to the respective IT security officer / contact in your institution. More information ================ [1] http://www.adobe.com/support/security/bulletins/apsb12-19.html Best regards, CERT-EU Pre-configuration Team (http://cert.europa.eu) Phone: +32.2.2990005 / e-mail: cert-eu@ec.europa.eu PGP KeyID 0x46AC4383 FP: 9011 6BE9 D642 DD93 8348 DAFA 27A4 06CA 46AC 4383 Privacy Statement: http://cert.europa.eu/cert/plainedition/en/cert_privacy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBAgAGBQJQNPRyAAoJEPpzpNLI8SVoIXEP+wWe8nT0bsTdclxwqdvrXtg2 BzU5bCCDxmKtLU7IYWlWYLlD0+GLw7WZusmI1yK/728uo0KUgMNbIMfIQPA69mxj 5hT6AfTKl33qGudcR5QZJpIzgICumH2RE+fhaGCwqIdta4jYixwoHZXMRADht9vU uzWQg1jfmgL6ceo+UPgkPiaVAAlpbSgVv45IN6veEmMIx+Mmt6QamtKDW5K4zDYz 7q/xn+q/6IoKOJ3hQGj5bTwWUCczMiVvbh5ZrHbEZlnhmn4dT+MIU2tBtCgqrY2Q t78I2xq5LcRnTkpgqS5MYD5u5s97Cw0PKu1wnWCcNraDIMxjgTQLXFFmnEAjYsaQ X3N51NwkxMyK7wMsls1OHcDKY553VxjJfeQxQ6CTdBDs+9s1NE89F/GGY5KwSe6U n5px1XJH428g9NLe2eRazyrrK4zXU6jN2233ShSlmNMWG76s17sGG08ut/+lpYb2 ycot5tFo8C1dit+lJmhaMlHOBTEf12hFrEsemA4G4hfZUOVdHJWQjJ3xZFbmgp+B aU3wJRfkCDcUenLP/yiZhwaLZd9PnJU5almR6LfQXD7Y84t/9J/zZQxt7Knas1KA hi0LWQDDXw41YCTb7xj1Yi0l5mqDUkBMOZfv1YcpcP4Pirosj4r1gK7uCIbso0z5 w02pSJh/I2aVzVZNPp80 =RQbH -----END PGP SIGNATURE-----