Security Watch

Keeping Track of patches and hacks in the IT security world.

Apple Fixes Adobe Flash Player Issue in Snow Leopard Upgrade

Apple has fixed an issue in Snow Leopard that was silently downgrading users to a vulnerable version of Adobe Flash Player. Security researchers had taken Apple to task about the issue a week ago after it was revealed users who upgraded to Mac OS X 10.6 were downgraded to Adobe

Apple has fixed an issue in Snow Leopard that was silently downgrading users to a vulnerable version of Adobe Flash Player.

Security researchers had taken Apple to task about the issue a week ago after it was revealed users who upgraded to Mac OS X 10.6 were downgraded to Adobe Flash version 10.0.23.1. The latest version of Flash is version 10.0.32.18, which has been patched to address a number of vulnerabilities.

The fix came out Sept. 10 along with a massive update for Mac OS X Server 10.5, Mac OS X Server 10.4.x (universal), Mac OS X Server 10.4.x (PowerPC), Mac OS X 10.5.8 and Mac OS X 10.4.11 that plugged more than 30 security holes.

Among them are fixes for Alias Manager, CarbonCore, ImageIO, CoreGraphics and ColorSync - all of which have vulnerabilities that could lead to arbitrary code execution, according to Apple.

Also included are fixes for a number of third-party components, including ClamAV, Adobe Flash, PHP and MySQL.