Security News > 2020 > November > Adobe Warns Windows, MacOS Users of Critical Acrobat and Reader Flaws
Adobe has fixed critical-severity flaws tied to four CVEs in the Windows and macOS versions of its Acrobat and Reader family of application software services.
These critical flaws include a heap-based buffer overflow, out-of-bounds write glitch and two use-after free flaws.
"While Adobe strives to release regularly scheduled updates on update Tuesday, occasionally those regularly scheduled security updates are released on non-update Tuesday dates," an Adobe spokesperson said.
"The November 2020 release of Adobe Reader and Acrobat is a standard product release that includes new product features as well as fixes for bugs and security vulnerabilities."
After warning of a critical vulnerability in its Flash Player application for users on Windows, macOS, Linux and ChromeOS operating systems, Adobe later in the month released 18 out-of-band security patches in 10 different software packages, including fixes for critical vulnerabilities that stretch across its product suite.
News URL
https://threatpost.com/adobe-windows-macos-critical-acrobat-reader-flaws/160903/
Related news
- March 2024 Patch Tuesday: Microsoft fixes critical bugs in Windows Hyper-V (source)
- From PDFs to Payload: Bogus Adobe Acrobat Reader Installers Distribute Byakugan Malware (source)
- Critical Rust flaw enables Windows command injection attacks (source)
- Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks (source)
- Rust rustles up fix for 10/10 critical command injection bug on Windows in std lib (source)