Adobe Flash Player 22.214.171.124 security update
Report ID: AD201402001
Date Published: February 20 2014
Compromise Type: remote-code-execution
Compromise From: remote
Adobe Flash Player 126.96.36.199 and earlier versions
for Windows and Macintosh
Adobe Flash Player 188.8.131.526 and earlier
versions for Linux
Adobe AIR 184.108.40.2060 and earlier versions
Adobe AIR 220.127.116.110 SDK and earlier versions
Adobe AIR 18.104.22.1680 SDK & Compiler and
Adobe has released security updates for Adobe Flash Player to address three critical vulnerabilities.
Adobe has released the Adobe Flash Player updates 22.214.171.124 (Windows), 126.96.36.1996 (Linux) and and 188.8.131.528 (AIR), which resolve three critical vulnerabilities found in the prior version of the affecred products. These vulnerabilities could, separately, be used to bypass the Address Space Layout Randomization (ASLR) security feature or perform remote code execution.
Adobe has had reports of CVE-2014-0502 vulnerability circulating in the wild. Users are recommended to update their installations to the latest version of Adobe Flash Player as a security measure against exploit attempts.
CVE-2014-0498, CVE-2014-0499 and CVE-2014-0502