Feeds

Adobe to patch Black Hat bugs on Thursday

Once more unto the breach

Boost IT visibility and business value

Adobe plans to release out-of-sequence updates on Thursday (19 August) designed to patch security holes in its Acrobat and Reader PDF software revealed at the Black Hat conference earlier this month.

Updates for Adobe Reader 9.3.3 for Windows, Macintosh and Unix will accompany Adobe Acrobat 9.3.3 for Windows and Macintosh as well as cross-platform patches for Adobe Reader 8.2.3 and Acrobat 8.2.3 - earlier but still supported versions of the software applications. Thursday will also mark the availability of a cross-platform update for Adobe Flash Player 10.1.53.64.

Vulnerable versions of Acrobat bundle an at-risk version of Flash Player. Secondly an integer overflow error in CoolType.dll library packages creates a critical code injection flaw, as explained in an advisory by Secunia here. Both bugs were discovered by Charlie Miller, of Independent Security Evaluators.

Adobe's next quarterly security update falls on 12 October but the Black Hat bugs were too serious to wait for that, hence the decision to push out an earlier release. More details on the planned update can be found in Adobe's advisory here.

Attacks against Adobe's applications are second only to Microsoft as the favourite target for hacker attackers. Adobe is putting a lot of effort into improving its patching and security process but the results, for now at least, remain unseasoned. The software maker's frequent security updates are a little hard to stomach as a result. ®

5 things you didn’t know about cloud backup

More from The Register

next story
Why has the web gone to hell? Market chaos and HUMAN NATURE
Tim Berners-Lee isn't happy, but we should be
Linux turns 23 and Linus Torvalds celebrates as only he can
No, not with swearing, but by controlling the release cycle
Apple promises to lift Curse of the Drained iPhone 5 Battery
Have you tried turning it off and...? Never mind, here's a replacement
Sin COS to tan Windows? Chinese operating system to debut in autumn – report
Development alliance working on desktop, mobe software
Eat up Martha! Microsoft slings handwriting recog into OneNote on Android
Freehand input on non-Windows kit for the first time
This is how I set about making a fortune with my own startup
Would you leave your well-paid job to chase your dream?
(Not so) Instagram now: Time-shifting Hyperlapse iPhone tool unleashed
Photos app now able to shoot fast-moving videos
prev story

Whitepapers

A new approach to endpoint data protection
What is the best way to ensure comprehensive visibility, management, and control of information on both company-owned and employee-owned devices?
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.