Adobe released an updated version of Flash Player that includes a zero-day vulnerability. The vulnerability affects Flash Player versions 21.0.226 and earlier on Windows, Mac OS X, Linux and Chrome OS. Adobe also released updated versions of Adobe Acrobat, Adobe Reader and ColdFusion, patching 95 vulnerabilities. On April 7, a zero day was patched in Flash after attacks were discovered in two exploit kits that were pushing ransomware onto compromised machines. Attackers used the previously unpatched flaw to infect victims with Locky or Cerber ransomware.
Source: https://threatpost.com/emergency-flash-update-patches-public-zero-day/118055/