LASER_oneXM

Level 31
Verified
Patches were released for Flash but they did not contain fixes for security issues.

Adobe's security update for January 2019 is a blue moon event with not a single security fix issued for Flash.
Instead, Adobe Connect and Digital Editions are the focus of this round of security updates.

Adobe Connect, software used for conferencing and training materials, is the first recipient of a fix. Impacting versions 9.8.1 and earlier on all platforms, a bug deemed "important," CVE-2018-19718, is a session token exposure issue which can reveal the privileges granted to a session.

Adobe Digital Editions versions 4.5.9 and below on Windows, macOS, iOS and Android systems, has received a fix for CVE-2018-12817, an out-of-bounds read vulnerability which, if exploited, can lead to information disclosure.
...
...