On April 5, Adobe issued the APSA16-01 security advisory, warning of the new critical zero-day flaw—identified as CVE-2016-1019—in Adobe Flash Player that impacts Windows, Mac OS X, Linux and Chrome OS users. In its advisory, Adobe warned that “successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system.”
Because the flaw is being actively exploited, Adobe’s spokesperson said Adobe is accelerating the regularly scheduled Patch Tuesday release of Flash Player. Instead of releasing it on April 12, as originally planned, the company will provide an update to address CVE-2016-1019 as early as April 7.
In addition to the new zero-day flaw, the April 7 Flash Player update will likely include fixes to a number of other high-impact vulnerabilities that have recently been reported to Adobe.
Read the full story at eWEEK:
Adobe Working on Zero-Day, Pwn2Own Patches for Flash
Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.