Adobe has release, the 9 April 2013, during his April Patch Tuesday, one Adobe Flash security bulletin dealing with four vulnerabilities. This security bulletin has a Critical severity rating.
APSB13-11 – Security updates available for Adobe Flash Player
APSB13-11 is concerning :
- Adobe Flash Player 11.6.602.180 and earlier versions for Windows and Macintosh
- Adobe Flash Player 11.2.202.275 and earlier versions for Linux
- Adobe Flash Player 11.1.115.48 and earlier versions for Android 4.x
- Adobe Flash Player 11.1.111.44 and earlier versions for Android 3.x and 2.x
- Adobe AIR 3.6.0.6090 and earlier versions for Windows, Macintosh and Android
- Adobe AIR 3.6.0.6090 SDK & Compiler and earlier version
CVE-2013-1378 (7.5 CVSS base score), CVE-2013-1379 (7.5 CVSS base score) and CVE-2013-1380 (7.5 CVSS base score) have been discovered and privately reported by Mateusz Jurczyk, Gynvael Coldwind, and Fermin Serna of the Google Security Team. CVE-2013-2555 (10.0 CVSS base score) has been discovered and privately reported by a VUPEN Security reported through TippingPoint’s Zero Day Initiative.
RT @ubersec: APSB13-11 – Adobe Flash April 2013 Security Bulletin Review: http://t.co/3TAPm9Nug7 #infosec
APSB13-11 – Adobe Flash April 2013 Security Bulletin Review: http://t.co/3TAPm9Nug7 #infosec
@eromang @AdobeSecurity @Adobe APSB13-11 – Security updates available for Adobe Flash Player http://t.co/6GvYmxOCSz #security #security