Adobe updates Security Advisory for Adobe Flash Player, Infocon returns to green

Published: 2015-01-26. Last Updated: 2015-01-26 17:14:25 UTC
by Russ McRee (Version: 1)
2 comment(s)

On Saturday, 24 JAN 2015, Adobe updated their Security Advisory for Adobe Flash Player specific to CVE-2015-0311. From the update: 

"Users who have enabled auto-update for the Flash Player desktop runtime will be receiving version 16.0.0.296 beginning on January 24. This version includes a fix for CVE-2015-0311. Adobe expects to have an update available for manual download during the week of January 26, and we are working with our distribution partners to make the update available in Google Chrome and Internet Explorer 10 and 11. For more information on updating Flash Player please refer to this post."

To that end we've reduced the SANS Internet Storm Center Infocon Threat Level back to GREEN. Please ensure you apply updates as soon as possible and stay tuned here as additional related information becomes available.

Russ McRee | @holisticinfosec

 

Keywords: adobe adobe flash
2 comment(s)

Comments

I updated at home this weekend (Sat or Sun) and got the 296 version.
I just tried updating 20150126 1250 PST and got version 287 - did adobe remove the patch?
tried both auto-update from control panel and get.adobe.com/flashplayer
It looks like Microsoft has not yet released a patch for IE on Windows 2012 server?

Diary Archives