Menu Close

Adobe Flash Player Version 19.0.0.185 Released

Harris

Adobe Flash Player ​version 19.0.0.185 has been released by Adobe Systems.  Adobe Flash Player is a cross-platform browser-based application runtime that is required for viewing of certain applications, content, and videos.

 


Fixed Issues

  • Black Screen is observed when second SWF is loaded[4021075]
  • UI elements, text, and videos get displayed at incorrect sizes when using IE[4000438]
  • Problem loading new SWFs onto stage using AS2.0 loadMovieNum [4027300]
  • Crossbridge project crashing Flash Player [4041472]
  • Performance lag is observed in application that implements Shine MP3 encoder library on MAC [4020998]
  • Multiple security and functional fixes

 

New Features

Improved Stage3D Error Messages

We’ve added new Stage3D error codes to provide developers with additional debugging and error information.

This feature is available for both Flash Player and AIR.  Swf’s compiled with a version less than 30 will throw the old error code messages.  Swf’s compiled with version 30 and above will throw the new error code messages.

We have also updated the AS3 documentation for various Stage3D APIs to provide more information about the reasons for the errors thrown.

The table below describes the new error codes and messages for the following Action Script APIs:

ActionScript API New Error Message
Context3DObject::configureBackBuffer Error #3780: Requested width of backbuffer is not in allowed range %1 to %2.
Error #3781: Requested height of backbuffer is not in allowed range %1 to %2.
Context3DObject::createRectangleTexture Error #3782: This call requires a Context3D that is created with profile baseline or above.
Context3DObject::setRenderToTexture Error #3779: This call requires a Context3D that is created with the standard profile or above.

New insertAt() and removeAt() Vector and Array APIs

With Flash Player and AIR 19, we have introduced two new APIs for element insertion or removal in Vector and Arrays.

Methods added:

insertAt(index:int, element:*):void;
removeAt(index:int):*;

Please use swf-version 30 or greater and namespace 19.0 or greater to access the new APIs.
 

Added ability to disable browser zoom factor scaling via HTML

In Flash Player 15, we added code to improve the resolution of Stage3D content when the browser’s zoom factor (BZF) was changed.

This was extended to the PPAPI and Windows XP/Vista/7 Active X control in Flash Player 18.  In Flash Player 19, we’re providing the developer the ability to enabled or disabled this functionality.  

BZF is turned on by default but can now be turn on/off by setting a new attribute browserzoom to two possible values scale/noscale in HTML EMBEDSWF and OBJECT tag.

The following table describes the use of this new attribute.

BZF State Attribute Description Attribute name and value in HTML Zoom change behavior
OFF Added a new attribute “browserzoom” in a list of params for both the HTML OBJECT tags i.e with attribute ‘classid’ and ‘type’ <param name=”browserzoom” value=”noscale” /> Flash content is not scaledwhen the browser’s zoom factor is changed
Added a new attribute “browserzoom” in a list of params for the HTML EMBEDSWF tag params.browserzoom=”noscale”
ON Added a new attribute “browserzoom” in a list of params for both the OBJECT tags i.e with attribute ‘classid’ and ‘type’ <param name=”browserzoom” value=”scale” /> Flash contentis scaledwhen changing the browser zoom factor
Add a new attribute “browserzoom” in a list of params for HTML EMBEDSWF tag params.browserzoom=”scale”



Known Issues

  • StageWebView not working with native browser option set to true. [4043422]

     

Security Updates

Adobe has released security updates for Adobe Flash Player.  These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

  • Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows update to Adobe Flash Player 19.0.0.185 by visiting the Adobe Flash Player Download Center or via the update mechanism within the product when prompted.
  • Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 19.0.0.185 on Windows, Macintosh, Linux and Chrome OS.
  • Adobe Flash Player installed with Microsoft Edge for Windows 10 will be automatically updated to the latest version, which will include Adobe Flash Player 19.0.0.185.
  • Adobe Flash Player installed with Internet Explorer 10 and 11 for Windows 8.0 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 19.0.0.185.

 

​Vulnerability Details
    • These updates resolve a type confusion vulnerability that could lead to code execution (CVE-2015-5573). 
    • These updates resolve use-after-free vulnerabilities that could lead to code execution (CVE-2015-5570, CVE-2015-5574, CVE-2015-5581, CVE-2015-5584, CVE-2015-6682). 
    • These updates resolve buffer overflow vulnerabilities that could lead to code execution (CVE-2015-6676, CVE-2015-6678). 
    • These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2015-5575, CVE-2015-5577, CVE-2015-5578, CVE-2015-5580, CVE-2015-5582, CVE-2015-5588, CVE-2015-6677). 
    • These updates include additional validation checks to ensure that Flash Player rejects malicious content from vulnerable JSONP callback APIs  (CVE-2015-5571). 
    • These updates resolve a memory leak vulnerability (CVE-2015-5576). 
    • These updates include further hardening to a mitigation to defend against vector length corruptions  (CVE-2015-5568). 
    • These updates resolve stack corruption vulnerabilities that could lead to code execution (CVE-2015-5567, CVE-2015-5579). 
    • These updates resolve a stack overflow vulnerability that could lead to code execution (CVE-2015-5587). 
    • These updates resolve a security bypass vulnerability that could lead to information disclosure (CVE-2015-5572). 
    • These updates resolve a vulnerability that could be exploited to bypass the same-origin-policy and lead to information disclosure (CVE-2015-6679).

 

Adobe Flash Player is one of the applications that is managed and updated by ODS.  If you are a current customer, ODS will automatically update your version of Adobe Flash Player over the next few days.  ODS will deploy both the ActiveX version and the Plugin version.  This ensures that Adobe Flash Player will function with web browsers including Internet Explorer, Firefox, Chrome, Safari, and Opera.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Adobe Flash Player. 


If you would like assistance managing and deploying Adobe Flash Player for PCs, please contact H Tech Solutions using the URL below.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at https://htechsolutions.biz/contact-us