Adobe Reader 9.3.2: aggiornamento per la sicurezza
Adobe è ufficialmente corsa ai ripari : dopo l’ennesimo bug nel Reader e le recenti scoperte sulla potenziale pericolosità dei files PDF l’azienda – resa celebre dal reader e dal suo potentissimo programma di grafica, Photoshop – come promesso ha rilasciato un aggiornamento per la sicurezza che risolve non pochi problemi - da loro definiti e, di fatto – critici. L’aggiornamento riguarda sia il Reader per Windows, piuttosto che per Linux, piuttosto che per Machintosh. Andiamo a vedere cosa ci dicono dal security bullettin ufficiale.
This update resolves a cross-site scripting vulnerability that could lead to code execution (CVE-2010-0190).
This update resolves a prefix protocol handler vulnerability that could lead to code execution (CVE-2010-0191).
This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0192).
This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0193).
This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0194).
This update resolves a font handling vulnerability that could lead to code execution (CVE-2010-0195).
This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0196).
This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0197).
This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0198).
This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0199).
This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0201).
This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0202).
This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0203).
This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0204).
This update resolves a heap-based overflow vulnerability that could lead to code execution (CVE-2010-1241).
Potrete scaricare il security update dai link in basso, a seconda del vostro sistema operativo. E’ possibile fare in modo che Adobe Reader scarichi automaticamente l’aggiornamento, tramite il menu “Aiuto –> Verifica Aggiornamenti” . Per maggiori informazioni, qui troverete il security bullettin da Adobe.com .
Commenti Lasciati