Adobe is a vendor that often plays catch-up with security exploits; issuing emergency patches issued to fix zero-day vulnerabilities. But Adobe, like Microsoft, also has a regular Patch Tuesday update cycle. This regularly scheduled update is a way to give users and enterprises a predictable and stable timetable for Adobe updates.
For August’s Patch Tuesday, Adobe has issued five update advisories covering its Flash Shockwave, Photoshop and RoboHelp applications.
The August Flash update addresses at least 13 vulnerabilities in Adobe’s Flash Player. According to Adobe, they are not aware of any exploits “in the wild” for the issues addressed in the update. Digging into the vulnerabilities, the vast majority are for memory and five buffer overflows, four memory corruption and three integer overflow issues. There is also a single cross-site information disclosure issue that is fixed that could have potentially led to arbitrary code execution.
Adobe has issued Flash Player 10.3.183.5 for Windows, Mac, Linux and Solaris to fix the 13 issues.