Adobe and Google may team up for Flash

ZDNet has a post about a rumor that Google and Adobe may team up speculating that this may include bundling Flash with Chrome, both the OS and the browser.  We’ve had a lot of posts on Flash vulnerabilities on Securabit (they make a regular appearance during the Vulnerability Roundups), so the first thing that comes to mind is that could mean even more vulnerable systems for attackers to exploit.

On the other side, as has been mentioned on twitter by @jack_daniel, @quine and @egyp7, there could be some upside.  This could mean that the folks at Google will get to look through the source code for Flash, perhaps tightening it up, or that the sandboxing in Chrome sees some improvement to compensate for weaknesses in Flash.  While the first case would certainly be nice, any improvement to Flash security seems like a Win.  Now maybe if we can get them to team up on Reader…

2 Responses to “Adobe and Google may team up for Flash”

  1. david says:

    Update: It looks like it is official: http://googlechromereleases.blogspot.com/2010/03/dev-channel-update_30.html
    Flash is now bundled into the Dev channel releases for all but 64bit Linux.

  2. Chris says:

    I think we might discuss the security benefits on the next show.

Leave a Reply