14 DAY TRIAL // Apple is being slammed over failing to include the most recent version of Flash with the latest Snow Leopard security update, with Brad Arkin, Adobe's director of security and privacy, reportedly writing in a message on Twitter, “10.6.4 update for Mac OS X includes Flash Player, but not the latest version.” Adobe had patched a number of security holes in its software prior to Apple’s release of the 10.6.4 update, and the 2010-004 Security Update.
Adobe’s latest Flash update (version is 10.1.53.64) reportedly addresses a number of widely documented zero-day flaws. Security researchers have accused Apple in the past for not including the newest version of Flash in its system updates, suggesting the Mac maker doesn’t see the inclusion of Adobe’s latest patches as a priority for its customers.
Wendy Poland writing over at the Adobe Product Security Incident Response Team (PSIRT) blog reported on June 15 that Apple had rolled out Security Update 2010-004 as well as the Mac OS X 10.6.4 incremental update for Snow Leopard. “This update includes an earlier version of Adobe Flash Player (version 10.0.45.2) than available from Adobe.com,” she wrote. “While the Mac OS X v10.6.4 update does not appear to downgrade users who have already upgraded to Adobe Flash Player 10.1, Adobe recommends users verify they are using the latest, most secure version of Flash Player (10.1.53.64) available for download from http://www.adobe.com/go/getflashplayer,” Poland’s advice was.
Adobe’s staffer continued, “To verify the Adobe Flash Player version number installed on your system (after applying the Mac OS X security update), access the About Flash Player page, or right-click on content running in Flash Player and select ‘About Adobe Flash Player’ from the menu. If you use multiple browsers, perform the check for each browser you have installed on your system.”
Softpedia note
Although Apple itself made it clear that the company didn’t care much for Flash, the inclusion of an older, vulnerable version of Adobe’s software should not be regarded as a consequence of the differences between the two companies. Most likely, the Mac maker works around the clock with developers trying to fix every newly emerged bug, while Flash is not one of their top priorities. It may also be worth noting that Apple is not necessarily acting in bad faith, with Adobe offering up the new version for manual download.