Submitted via IRC for Bytram
Adobe Fixes 43 Critical Acrobat and Reader Flaws
Adobe issued patches for 43 critical vulnerabilities in Acrobat and Reader – including a fix for a zero-day flaw that researchers at 0patch temporarily fixed on Monday. That bug could enable bad actors to steal victims’ hashed password values.
Overall, Adobe patched 75 important and critical vulnerabilities across its products, including Acrobat Reader DC, Adobe Flash Player, Adobe Coldfusion, and Creative Cloud Desktop Application. The Tuesday morning patches are part of Adobe’s regularly-scheduled security updates.
Adobe said it is not aware that any of these vulnerabilities are being actively exploited.
Adobe Acrobat and Reader by far had the most vulnerabilities (71 overall) – 43 of which were dubbed critical severity.
(Score: 3, Funny) by bob_super on Wednesday February 13 2019, @01:11AM (1 child)
While I do appreciate how my supplier can send me 3D models in PDF form, it's mind-boggling that Adobe manages to insert so many critical bugs in something that should be primarily a document reader/editor.
How do the annual numbers compare to MS Office ?
(Score: 1, Informative) by Anonymous Coward on Wednesday February 13 2019, @03:11AM
https://www.cvedetails.com/product/921/Adobe-Acrobat.html?vendor_id=53 [cvedetails.com] vs https://www.cvedetails.com/product/320/Microsoft-Office.html?vendor_id=26 [cvedetails.com]