Adobe promises critical fixes for patch Tuesday

**Glaswegian** · 06-05-2009, 01:32 PM

Adobe Systems is to make good its promise to speed up its patching process, when it will deliver its first set of quarterly patches next Tuesday.

The patches will cover Adobe Reader and Acrobat versions 7.x, 8.x, and 9.x for Microsoft Windows and for Apple's Mac OS X, wrote Brad Arkin, director for product security and privacy, on the company's security blog. Information on patches for Unix systems will be released later.

The fixes are considered "critical," Adobe's highest severity warning, meaning that malicious native code can be executed on a PC without a user knowing it.

Last month Adobe announced it would move to a quarterly patching schedule in order to improve predictability for administrators. Adobe also chose to release its patches on the second Tuesday of the month, the same day Microsoft releases its updates, so administrators can test both sets of patches at the same time before updating PCs.

Arkin wrote that the updates will incorporate the initial output of code-hardening efforts. Adobe said it is combing through the legacy code in its products in order to find and fix flaws.

Adobe products have been extensively probed by hackers. Vulnerabilities in the company's Reader and Acrobat software have let hackers create PDF files that, if opened, can result in a compromised PC.

Since PDF files are commonly used, hackers have been able to successfully trick people into opening the documents using social engineering techniques.

http://www.techworld.com/security/ne...&NewsID=117019

06-05-2009, 01:32 PM	#1 (permalink)
Glaswegian Moderator/ Rangemaster TSF Academy; Analyst, Security Team; Oor Wullie; TSF Surgeon and Resident Comic Join Date: Sep 2005 Location: Glasgow Posts: 25,172 OS: Win XP Pro SP3 / Win 7 Pro My System Blog Entries: 10	Adobe promises critical fixes for patch Tuesday Adobe Systems is to make good its promise to speed up its patching process, when it will deliver its first set of quarterly patches next Tuesday. The patches will cover Adobe Reader and Acrobat versions 7.x, 8.x, and 9.x for Microsoft Windows and for Apple's Mac OS X, wrote Brad Arkin, director for product security and privacy, on the company's security blog. Information on patches for Unix systems will be released later. The fixes are considered "critical," Adobe's highest severity warning, meaning that malicious native code can be executed on a PC without a user knowing it. Last month Adobe announced it would move to a quarterly patching schedule in order to improve predictability for administrators. Adobe also chose to release its patches on the second Tuesday of the month, the same day Microsoft releases its updates, so administrators can test both sets of patches at the same time before updating PCs. Arkin wrote that the updates will incorporate the initial output of code-hardening efforts. Adobe said it is combing through the legacy code in its products in order to find and fix flaws. Adobe products have been extensively probed by hackers. Vulnerabilities in the company's Reader and Acrobat software have let hackers create PDF files that, if opened, can result in a compromised PC. Since PDF files are commonly used, hackers have been able to successfully trick people into opening the documents using social engineering techniques. http://www.techworld.com/security/ne...&NewsID=117019 __________________ Iain - Defender of the Haggis and all things Scottish. I don't help by PM - post in the Forums. PC Safety & Security::PC running a bit slow?::Donate::Photographers Corner