dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
11154
share rss forum feed


siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
reply to gugarci

Re: Adobe Flash Player 11.4.402.265/10.3.183.23

None, gugarci See Profile



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
reply to kickass69

The usual link works, just fine, less the usual third party offerings »get.adobe.com/flashplayer/



kickass69

join:2002-06-03
Lake Hopatcong, NJ

1 recommendation

I just prefer the direct installers without any third party nonsense per my link at the top.



kickass69

join:2002-06-03
Lake Hopatcong, NJ
reply to gugarci

Nothing officially posted on Adobe's site yet.



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
reply to kickass69

Whatever works for the user, providing there is sufficent warning & that's it's an Adobe Link, works for me.

Pick your poison


ctggzg
Premium
join:2005-02-11
USA
kudos:2
reply to kickass69

And they STILL haven't fixed the problem with Flash stealing focus from the Firefox window. It seems that the brilliant developers at Adobe coded a hack to put focus back on Firefox, but there's still a split-second where it's gone.



antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
United State
kudos:4
reply to kickass69

Argh!!!!!!! I think I will wait?



chachazz
Premium
join:2003-12-14
kudos:9
Reviews:
·TELUS

1 recommendation

reply to kickass69

Release Announcement @ Adobe forums:

quote:
Today we're pleased to announce that the next version of Flash Player, 11.4.402.265, is available for immediate download. This update includes the following new features:

•Concurrency (ActionScript Workers) - This feature enable developers to off-load certain tasks like high-latency operations and long-running computations to workers. These background workers run concurrently in order to leverage more machine resources and avoid things like UI freezes and allow content to be more responsive.

• Stage3D constrained mode -A new parameter to Context3D has been introduced called "constrained profile". Constrained profile allows Stage3D content to run hardware accelerated on more hardware, especially the Intel GMA chipsets. The Starling framework has been updated to be constrained mode ready.

• StageVideo.attachCamera - Provides webcam support for StageVideo. This allows developers to leverage GPU acceleration to render webcam video streams.

• Camera.copyToByteArray/Camera.copyToVector - Allow efficient copy of the video frames pixels to an existing ByteArray or Vector.

• LZMA support for ByteArray - In addition to zlib compression of ByteArray, we are introducing an additional compression type based on LZMA to compress data inside a ByteArray through ByteArray.compress() and ByteArray.uncompress().

For further information please see our Release Notes.
More detailed information at the Flash Team Blog:
Enabling the web and app development with new bleeding edge technology - Flash Player 11.4 and AIR 3.4
--
Gladiator Security Forum: www.gladiator-antivirus.com/


therube

join:2004-11-11
Randallstown, MD

3 recommendations

reply to kickass69

Security updates available for Adobe Flash Player

Release date: August 21, 2012

Vulnerability identifier: APSB12-19

Priority: See table below

CVE number: CVE-2012-4163, CVE-2012-4164, CVE-2012-4165, CVE-2012-4166, CVE-2012-4167, CVE-2012-4168

Platform: All Platforms
Summary

Adobe has released security updates for Adobe Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.11 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and 2.x. These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system.

Adobe recommends users update their product installations to the latest versions:

Users of Adobe Flash Player 11.3.300.271 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 11.4.402.265.
Users of Adobe Flash Player 11.2.202.236 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.238.
Flash Player installed with Google Chrome will automatically be updated to the latest Google Chrome version, which will include Adobe Flash Player 11.3.31.230 for Windows and Linux, and Flash Player 11.4.402.265 for Macintosh.
Users of Adobe Flash Player 11.1.115.11 and earlier versions on Android 4.x devices should update to Adobe Flash Player 11.1.115.17.
Users of Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and earlier versions should update to Flash Player 11.1.111.16.
Users of Adobe AIR 3.3.0.3670 for Windows and Macintosh should update to Adobe AIR 3.4.0.2540.
Users of the Adobe AIR 3.3.0.3690 SDK (includes AIR for iOS) should update to the Adobe AIR 3.4.0.2540 SDK.
Users of the Adobe AIR 3.3.0.3650 and earlier versions for Android should update to the Adobe AIR 3.4.0.2540.

Affected software versions

Adobe Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux operating systems
Adobe Flash Player 11.1.115.11 and earlier versions for Android 4.x
Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and 2.x
Adobe AIR 3.3.0.3670 and earlier versions for Windows and Macintosh
Adobe AIR 3.3.0.3690 SDK (includes AIR for iOS) and earlier versions
Adobe AIR 3.3.0.3650 and earlier versions for Android

...

These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2012-4163, CVE-2012-4164, CVE-2012-4165, CVE-2012-4166).

These updates resolve an integer overflow vulnerability that could lead to code execution (CVE-2012-4167).

These updates resolve a cross-domain information leak vulnerability (CVE-2012-4168).

...



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
Reviews:
·Bell Sympatico
reply to antdude

These are almost semi-weekly, antdude See Profile you might as well slam it over top of the last one.



antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
United State
kudos:4
Reviews:
·Time Warner Cable

3 recommendations

said by siljaline:

These are almost semi-weekly, antdude See Profile you might as well slam it over top of the last one.

After reading the new features and fixes, I already did.
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer.


gugarci
Premium
join:2004-02-25
Lyndhurst, NJ
reply to kickass69

OK now that we have a change log I upgraded my main desktop. No issues yet.



sbconslt

join:2009-07-28
Los Angeles, CA
reply to kickass69

Have updated 3 systems here without issue.



deke40
Premium
join:2003-01-23
Texas
reply to kickass69

Sadly, it's the first version that breaks the Chronopatcher (v1.03) :/
Tested on the ActiveX/IE version.

This is the FullScreenPatcher.

»forum.videohelp.com/topic367434.html



MarkAW
Barry White
Premium
join:2001-08-27
Canada
kudos:16
reply to kickass69

Thanks kickass69 See Profile got it.


kickass69

join:2002-06-03
Lake Hopatcong, NJ
reply to siljaline

Release Notes | Flash Player® 11.4 AIR® 3.4 - »helpx.adobe.com/flash-player/rel···tes.html



chachazz
Premium
join:2003-12-14
kudos:9
Reviews:
·TELUS

said by kickass69:

Release Notes | Flash Player® 11.4 AIR® 3.4 -

Already posted - »Re: Adobe Flash Player 11.4.402.265/10.3.183.23
quote:
For further information please see our Release Notes ..


Name Game
Premium
join:2002-07-07
Grand Rapids, MI
kudos:7

2 edits
reply to coldmoon

said by coldmoon:

Hope this update resolves the crash in Opera when closed after using the news reader in Opera mail.

Any news on when Google will be releasing an update with the new version for Chrome?

It updated today..called 11.3.31.230 for Windows if you have Chrome and new version of Chrome itself is called 21.0.1180.83 m
»googlechromereleases.blogspot.co···-os.html
The flash in a sandbox
»en.wikipedia.org/wiki/Seccomp

Updates are available for Windows, Mac, Linux and Android platforms. Windows and Mac users will need to update to v. 11.4.402.265 (Linux and Android should users see the advisory for their version numbers). The Flash Player installed with Google Chrome should automatically be updated to the latest Google Chrome version, which will include Adobe Flash Player v. 11.3.31.230 for Windows and Linux, and Flash Player v. 11.4.402.265 for Macintosh. When I composed this post, however, the installation of Chrome on my Mac had not yet updated to the new version Google began pushing out today (a restart of the browser fixed that).

»krebsonsecurity.com/tag/v-11-3-31-230/

Only chrome user complaint so far seems to be this one for the guys flash..

21.0.1180.83 m

It was working just an hour ago. then chrome updated and now all of a sudden when I try to video chat at »live.meetme.com, flash crashes every time!
»productforums.google.com/forum/#···9TEE2sVA

--
Gladiator Security Forum
»www.gladiator-antivirus.com/


kickass69

join:2002-06-03
Lake Hopatcong, NJ
reply to chachazz

Ahh my bad.



Littlem129
Premium
join:2007-05-13
White Pine, TN
reply to kickass69

Thanks for the updates guys!



Boricua
Premium
join:2002-01-26
Sacramuerto
reply to kickass69

Until Flash is written to be stable, this is going to be a weekly (or daily) chore to keeping it updated .
--
Illegal aliens have always been a problem in the United States. Ask any Indian. Robert Orben



kickass69

join:2002-06-03
Lake Hopatcong, NJ

I've said time and time again that when Adobe added sandboxing to Flash in the late 11.2 and 11.3 versions is when all these problems arose plus who knows what else they changed. While the idea is sound, all these issues are proving it's not worth it and they should remove it.



gugarci
Premium
join:2004-02-25
Lyndhurst, NJ
Reviews:
·Comcast
reply to Boricua

said by Boricua:

Until Flash is written to be stable, this is going to be a weekly (or daily) chore to keeping it updated .

Not really. Do what I do, only update to a newer version if it contains security fixes. If your old version works well and the new version does not contain any security fixes DO NOT UPDATE!!!!! Until this past update I was still using 11.3.300.262 since the other 11.3 version were bug fixes only.
--
Desktop Win 7 x64 Emsisoft Anti Malware v6.6, Laptop Win 7 x64 & Desktop XP Pro Emsisoft Anti Malware v6.6 & Online Armor Premium v5.5, Netbook Win 7 Starter and Netbook XP Home Avast 7, MBAM and Hitman Pro used on-demand only.


Name Game
Premium
join:2002-07-07
Grand Rapids, MI
kudos:7

I guess also if you have a recent and not very old one..you could also pass up the security fixes since they now claim the following and sometimes it is hard to find new versions that work as well as the last one you currently have installed.

June 7, 2012

Overall, the Flash Player sandbox process has been a journey of incremental improvements with each step bringing end-users a more secure environment. We started by supporting Protected Mode within Internet Explorer, which enabled Flash Player to run as a low integrity process with limited write capabilities. From there, we worked with Google on building the Chrome sandbox, which converted Flash Player to using a more robust broker implementation. This release of Flash Player Protected Mode for Firefox on Windows takes the Chrome implementation one step further by changing Flash Player to run with job limits on the process. With Flash Player Protected Mode being based on the same technology as Adobe Reader X, we are confident that this implementation will be a significant barrier and help prevent exploits via Flash Player for Firefox users. Going forward, we plan to continue to build on this infrastructure with more sandbox projects, such as our upcoming release of Flash Player for Chrome Pepper. As we combine these efforts with other efforts, such as the background updater, we are making it increasingly more difficult for Flash Player to be targeted for malicious purposes.

»blogs.adobe.com/asset/2012/06/in···fox.html

Older info..
"Running the plugin in a sandbox, otherwise known as protected mode, will potentially reduce the seriousness of any code vulnerabilities by isolating it from the system.

'Sandboxing technology has proven very effective in protecting users by increasing the cost and complexity of authoring effective exploits,' said Peleus Uhley, senior security researcher for Adobe.

'For example, since its launch in November 2010, we have not seen a single successful exploit in the wild against Adobe Reader X. We hope to see similar results with the Flash Player sandbox for Firefox once the final version is released later this year.'

This usually applies to Firefox 4.0 or later versions running on Windows 7 or Vista."
--
Gladiator Security Forum
»www.gladiator-antivirus.com/

OZO
Premium
join:2003-01-17
kudos:2

1 recommendation

said by Name Game:

'Sandboxing technology has proven very effective in protecting users by increasing the cost and complexity of authoring effective exploits,' said Peleus Uhley, senior security researcher for Adobe.

It looks like they (and BTW, many others too) become liking the new buzzword - "sandboxing". First, they (Adobe) started using different tricks to get to direct API calls, that allow modification (reading / writing) objects in computer (files, registry, etc). And then, when people discovered that those direct calls may do real harm to their systems, they (Adobe) started to talk about making a "protection layer" (sandbox), that presumably isolates system from those direct calls, made by their plugins / activeX components... See, how fun it is?

Why we see all this fuss now?

Because Adobe/Macromedia wants to have that direct access to everyone's computer. To control, to monitor, to do other similar stuff... Past several years they tried to foist their new service, that runs on the background, they silently put scheduled tasks, which may wake up and execute whatever they want, they silently request elevated privileges in IE, allowing to have access to your registry directly from web sites. And when some of those tricks become widely exploited by others (who knew that would happened, right? ) they issued new security patches again, and again, and again... And now they start covering their real intentions (having control over your computer) with the latest buzzword - "sandbox". Wouldn't it be better, if they cared just a bit about computer security and designed their plugins/activeX without those tricks in the first place? But I guess that's just a rhetorical question at this point. It's Adobe/Macromedia we're dealing with...
--
Keep it simple, it'll become complex by itself...


Dustyn
Premium
join:2003-02-26
Ontario, CAN
kudos:11

1 edit
reply to kickass69

Thank you!
Gonna grab it now.

wolfy339

join:2005-04-30
Edmonds, WA

1 recommendation

reply to kickass69

stupid question on using the installers from »www.adobe.com/products/flashplay···n3.html: do these installers include both the 32 and 64 bit versions of Flash Player?



sbconslt

join:2009-07-28
Los Angeles, CA

1 recommendation

Yes, there is only one installer, packing both 32 and 64 bit.



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
Reviews:
·Bell Sympatico

1 recommendation

said by sbconslt:

Yes, there is only one installer, packing both 32 and 64 bit.

quote:
Note: Beginning with 11.3, the universal 32-bit installer will include the 32-bit and 64-bit versions of the Flash Player.

Libra
Premium
join:2003-08-06
USA
kudos:1
Reviews:
·Verizon FiOS

1 recommendation

reply to kickass69

Thank you for advising us of this update and the links.

Also, thanks to siljaline See Profile for recommending I install over the top. I did on 3 computers and it all went well.

Sincerely, Libra