Adobe has released Flash Player version 220.127.116.11 to “address critical vulnerabilities that could potentially allow an attacker to take control of the affected system,” including Mac.
Adobe said the critical security update resolves integer overflow, memory corruption, type confusion, heap buffer overflow, and use-after-free vulnerabilities that could lead to code execution. The vulnerabilities were reported by security teams from Google, Microsoft, Palo Alto Networks, and Trend Micro.
Mac users with Flash Player version 18.104.22.168 or earlier should immediately update to the latest version using the built-in update mechanism. The update is also available from the Adobe Flash Player Download Center.
Flash Player users who have enabled the option to allow Adobe to install updates will receive the update automatically.
Google Chrome will automatically update Flash Player to version 22.214.171.124. You can select “About Google Chrome” under the Tools menu to verify the browser is up-to-date.
Safari on macOS Sierra deactivates Flash by default, only turning on the plug-in when user requested. Chrome, Firefox, and most other modern web browsers also have web plug-in safeguards in place due to repeated security risks. Adobe has released fifteen Flash Player security updates over the past year.
If you have friends that are Mac users, we encourage you to share this information with them. While you’re at it, why not invite them to check our Apple Tech Talk so they can get the same great information you enjoy.