"Adobe, which has spent the last few years trying to dig out of a deep hole of vulnerabilities and buggy code, is making a major change to Flash, adding a sandbox to the version of the player that runs in Firefox. The sandbox is designed to prevent many common exploit techniques against Flash. The move by Adobe comes roughly a year after the company added a sandbox to Flash for Google Chrome.
"Adobe has released an emergency fix for a bug in Flash Player that is being used in attempted attacks on Gmail users, an Adobe spokeswoman said today. "We have reports that this vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious link delivered in an e-mail message," spokeswoman Wiebke Lips said in an e-mail. "The reports we received indicate that the current attacks are targeting Gmail specifically.
"Google today introduced a new beta version of its Chrome Web Browser which extends its sandboxing technology to include the Flash Player plug-in. "Sandboxing" technology is a method of isolating an application from the rest of the operating system and tightly controlling its resources." | more
"The current version of Adobe Flash at 10.1 offloads some of the internet video rendering to the GPU, but not all of it. Flash 10.1 offloaded H.264 decoding to hardware, and now in the next iteration at 10.2, now in beta, Adobe is moving the entire video rendering pipeline to the GPU." | more
"We sometimes sneer at cellphones equipped with Adobe’s Flash browser plug-in: On tiny, energy-efficient mobile processors, the plug-in spikes CPU-usage, causing a big drain on battery life and often making the poor host browser so stuttery and unresponsive that it is rendered useless. But what of full-sized computers? They can handle it, right?" | more
Adobe today shipped a critical Reader/Acrobat patch to cover a total of 17 documented vulnerabilities that expose Windows, Mac and UNIX users to malicious hacker attacks.
The update, which affects Adobe Reader/Acrobat 9.3.2 (and earlier versions), includes a fix for the outstanding PDF "/Launch" functionality social engineering attack vector that was disclosed by researcher Didier Stevens.
Mozilla has released Firefox 3.6.6, an incremental update which tweaks the way the browser handles misbehaving plug-ins, giving Flash and other plug-ins 45 seconds to respond, or else get shut down.
In just months, from seemingly nowhere, Apple’s solo campaign to dethrone Flash as the de facto standard for web video has gathered enough momentum to get over the top. The question is no longer whether HTML5 will or should do the job, but when.
The project manager for Adobe Flash said his company is throwing in the towel on its Flash for iPhone efforts and concentrating its efforts on Android.
In a post on his blog, Mike Chambers said the company will still ship its iPhone packager with Creative Suite 5, which allows developers to build iPhone apps in Flash and convert them for the iPhone.
But he said that after Apple changed the language of its developer license agreement to prohibit the use of outside development tools, Adobe won't be investing anymore in that software.
Apple CEO Steve Jobs has reportedly continued his campaign against Adobe's Flash video technology, this time at a meeting with The Wall Street Journal, according to a report in Valleywag.
People who were at a recent meeting Jobs had with some of the paper's executives told the Gawker-owned site that Jobs dismissed Flash as "a CPU hog," full of "security holes," and "old technology" and would therefore not be including the technology on the iPad, or presumably, the iPhone.
It's not the first time we've heard this.
Copyright 2013 © Godem Online Inc. | Web and server solutions by NewTech Solutions.