Adobe Flash Player 220.127.116.11 security update
Report ID: AD201402001
Date Published: February 20 2014
Compromise Type: remote-code-execution
Compromise From: remote
Adobe Flash Player 18.104.22.168 and earlier versions
for Windows and Macintosh
Adobe Flash Player 22.214.171.1246 and earlier
versions for Linux
Adobe AIR 126.96.36.1990 and earlier versions
Adobe AIR 188.8.131.520 SDK and earlier versions
Adobe AIR 184.108.40.2060 SDK & Compiler and
Adobe has released security updates for Adobe Flash Player to address three critical vulnerabilities.
Adobe has released the Adobe Flash Player updates 220.127.116.11 (Windows), 18.104.22.1686 (Linux) and and 22.214.171.1248 (AIR), which resolve three critical vulnerabilities found in the prior version of the affecred products. These vulnerabilities could, separately, be used to bypass the Address Space Layout Randomization (ASLR) security feature or perform remote code execution.
Adobe has had reports of CVE-2014-0502 vulnerability circulating in the wild. Users are recommended to update their installations to the latest version of Adobe Flash Player as a security measure against exploit attempts.
CVE-2014-0498, CVE-2014-0499 and CVE-2014-0502