Adobe fixes just one of two actively exploited zero-day vulnerabilities in Flash Player
Emergency updates for Flash Player released Thursday fix a vulnerability that is actively exploited by attackers, but leave a separate one unpatched.
Adobe Systems released Flash Player 184.108.40.2067 for Windows and Mac, Flash Player 220.127.116.118 for Linux and Flash Player Extended Support Release 18.104.22.1682. These updates address a vulnerability identified in the Common Vulnerabilities and Exposures database as CVE-2015-0310.
Adobe is aware of an exploit for this vulnerability “in the wild” being used to attack older versions of Flash Player, the company said in a security advisory.