Security Update: Hotfix Available for ColdFusion (APSB15-21)

A Security Bulletin (APSB15-21) has been published regarding a hotfix for ColdFusion. This hotfix addresses an important vulnerability that could result in information disclosure. Adobe recommends users apply the hotfix using the instructions provided in the “Solution” section of the Security Bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Hotfix Available for LiveCycle Data Services (APSB15-20)

A Security Bulletin (APSB15-20) has been published regarding a hotfix for LiveCycle DS.  This hotfix addresses an important vulnerability that could result in information disclosure.  Adobe recommends users apply the hotfix using the instructions provided in the “Solution” section of the Security Bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Updates Available for Adobe Flash Player (APSB15-19)

A security bulletin (APSB15-19) has been published regarding security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

UPDATED: Security Bulletins Posted

Security Bulletins for Adobe Acrobat and Reader (APSB15-15), Adobe Shockwave Player (APSB15-17) and Adobe Flash Player (APSB15-18) have been published. These updates address critical vulnerabilities, and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant security bulletin.

Adobe is aware of reports that exploits targeting vulnerabilities affecting Flash Player have been published publicly.

UPDATE (July 16): Updated APSB15-18 to include versions of Flash Player for Linux as well as the Extended Support Release that address the vulnerabilities referenced in APSB15-18.

This posting is provided “AS IS” with no warranties and confers no rights.

UPDATED: Security Advisory for Adobe Flash Player (APSA15-04)

A Security Advisory (APSA15-04) has been published regarding critical vulnerabilities (CVE-2015-5122, CVE-2015-5123) in Adobe Flash Player 18.0.0.204 and earlier versions for Windows, Macintosh and Linux.

Adobe is aware of reports that exploits targeting these vulnerabilities have been published publicly. Adobe expects to make updates for Adobe Flash Player available during the week of July 13, 2015.

UPDATE (July 11): Updated this PSIRT blog post and the Security Advisory (APSA15-04) to add information on CVE-2015-5123.

This posting is provided “AS IS” with no warranties and confers no rights.

Prenotification: Upcoming Security Updates for Adobe Acrobat and Reader (APSB15-15)

A prenotification security advisory has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, July 14, 2015.

We will continue to provide updates on the upcoming release via the Security Bulletins and Advisories page as well as the Adobe PSIRT Blog.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Updates Available for Adobe Flash Player (APSB15-16)

A security bulletin (APSB15-16) has been published regarding security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit targeting one of the vulnerabilities, CVE-2015-5119, has been publicly published. Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

Security Advisory for Adobe Flash Player (APSA15-03)

A Security Advisory (APSA15-03) has been published regarding a critical vulnerability (CVE-2015-5119) in Adobe Flash Player 18.0.0.194 and earlier versions for Windows, Macintosh and Linux.

Adobe is aware of reports that an exploit targeting this vulnerability has been publicly published. Adobe expects to make updates available on July 8, 2015.

This posting is provided “AS IS” with no warranties and confers no rights.

Security updates available for Adobe Flash Player (APSB15-14)

A Security Bulletin (APSB15-14) has been published regarding security updates for Adobe Flash Player. These updates address a critical vulnerability (CVE-2015-3113), and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

Adobe is aware of reports that CVE-2015-3113 is being actively exploited in the wild via limited, targeted attacks. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP, are known targets.

This posting is provided “AS IS” with no warranties and confers no rights.

Security updates available for Adobe Flash Player (APSB15-11)

A Security Bulletin (APSB15-11) has been published regarding security updates for Adobe Flash Player. These updates address critical vulnerabilities, and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.