Adobe has come out with a laundry list of exploitable errors within the latest version of Flash, including one that it says is being used in "limited, targeted attacks" out there in the wilds of internetland.
The latest security bulletin has all the details, where some poor man at Adobe had to shamefully type out all the affected build numbers and say that users on Windows, OS X and Linux machines should all be aware that some security holes have been found and might therefore want to click "YES OK GO ON THEN" for once when prompted to update bloody Flash again.
"Adobe is aware of a report that an exploit for CVE-2016-1010 is being used in limited, targeted attacks" is the most worrying news, with Adobe saying it's found -- or someone else has found and been enjoying for a while -- a method of using integer overflows to open vulnerabilities and potentially run malicious code.
People affiliated with Google's bug-hunting schemes, HPE's Zero Day Initiative, Microsoft and Kaspersky Lab are variously credited with helping Adobe find this latest batch of broken bits within its code. [Adobe via The Register]