Security News > 2020 > July > Adobe out-of-band security updates for Photoshop, Prelude, Bridge

Adobe out-of-band security updates for Photoshop, Prelude, Bridge
2020-07-22 10:34

A week after July 2020 Patch Tuesday, Adobe has released out-of-band security updates to fix thirteen vulnerabilities - twelve of which critical - in Adobe Photoshop, Bridge, Prelude, and Reader Mobile.

The Adobe Photoshop updates deliver fixes for Photoshop CC 2019 and Photoshop 2020 on Windows and macOS, which resolve five critical out-of-bounds read/write issues that could lead to arbitrary code execution.

The Adobe Prelude update fix four out-of-bounds read/write flaws that may allow successful arbitrary code execution, and the Adobe Bridge update three.

Aside from the Mobile Reader update, the others are not that pressing - although they are important for individuals and organizations that work on photo and video production: Photoshop is widely used for editing images and producing digital art, Adobe Prelude is a logging tool for tagging media with metadata for searching, post-production workflows, and footage lifecycle management, and Adobe Bridge is a digital asset management app.

All of the out-of-bounds read/write vulnerabilities fixed in this round of security updates were flagged by Mat Powell of Trend Micro Zero Day Initiative and, according to ZDI's Dustin Childs, they can be triggered if the target opens a specially crafted file or visits a malicious website.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/c0J_rdO3Gkw/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 166 68 2143 934 2114 5259