Dive Brief:
-
Adobe released an update correcting 19 critical bugs on December 28. On Jan. 1, another critical patch was released that corrected problems loading Flash in embedded applications.
-
The company said at least one of the flaws was being exploited.
-
Adobe reported a very high number of vulnerabilities in its products in 2015.
Dive Insight:
Adobe recommended that those who do not have automatic updates enabled install a new version as soon as possible.
The January 1 emergency patch ended a rough year for Flash. Adobe had to fix three zero-day exploits early in 2015, and addressed 79 security holes in an update just a few weeks ago, in addition to other patches throughout the year.
CVE Details recently published its annually updated product vulnerability listing, which ranks products based by total number of distinct vulnerabilities. Adobe Flash took third place.
