Apple has fixed an issue in Snow Leopard that was silently downgrading users to a vulnerable version of Adobe Flash Player.
Security researchers had taken Apple to task about the issue a week ago after it was revealed users who upgraded to Mac OS X 10.6 were downgraded to Adobe Flash version 10.0.23.1. The latest version of Flash is version 10.0.32.18, which has been patched to address a number of vulnerabilities.
The fix came out Sept. 10 along with a massive update for Mac OS X Server 10.5, Mac OS X Server 10.4.x (universal), Mac OS X Server 10.4.x (PowerPC), Mac OS X 10.5.8 and Mac OS X 10.4.11 that plugged more than 30 security holes.
Among them are fixes for Alias Manager, CarbonCore, ImageIO, CoreGraphics and ColorSync – all of which have vulnerabilities that could lead to arbitrary code execution, according to Apple.
Also included are fixes for a number of third-party components, including ClamAV, Adobe Flash, PHP and MySQL.