I see that there are updates for just about every operating system other than Solaris to cover this vulnerability.
1. Are Solaris 10 SPARC and x86 affected as well?
2. If so, will there be a patch released and when?
Sorry if I have posted this on one too many forums.
I do not know whether or not the Solaris 10 SPARC and x86 versions are affected or not.
I suggest that you just download and install the latest version 22.214.171.124 for these systems from http://www.adobe.com/products/flashplayer/distribution3.html
I just downloaded and tested both the SPARC and x86 version from that site.
Sad to say only version 223 is available at that location.
Even if you don't have a Solaris system to check, extract the files and you will see the folder name is as follows.
I did test on a Solaris system and it confirmed that these are indeed 223.
Thus, I asked the question, isn't Solaris affected as well?
How may I push this up for action? The security community is rather adament that we patch for this CVE.
I sent the PM as requested.
I am also curious to know when Adobe will be ceasing to support Solaris for Flash. I would assume with all the rumors about HTML5 and support dropping of for Android that it is possible support for Solaris Flash may be waning. If so, I need to let some developers know soon.
Thank you for the information regarding the Solaris version. The documentation for the latest update wasn't clear, leading us to wonder if our versions were vulnerable. Hopefully, Adobe will continue to support Flash Player for Solaris.
Oracle tends to be somewhat behind when they release updates for Adobe Flash Player. I do wish they would indicate the version being provided in the update, though....
(Update) apsb12-14 doesn't mention a thing about Solaris. If only the other flavors could be as well written, they wouldn't be vulnerable to these new issues either, just like Solaris.....
I laugh as I watch you update your systems, while I bask in invulnerability.
Message was edited by: David Paige
Europe, Middle East and Africa