"Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns"
Adobe recently rolled out a big batch of security updates for its flagship Acrobat and Reader software, patching at least 30 vulnerabilities affecting Windows and macOS installations. Adobe warned that successful exploitation could lead to arbitrary code execution, memory leaks, security feature bypass, and application denial-of-service attacks. Adobe said affected software includes Acrobat DC, Acrobat Reader DC, Acrobat 2020 and Acrobat Reader 2020. The company described most of the bugs as memory safety issues and said it was not aware of any exploits in the wild. Adobe separately shipped an urgent update covering a trio of security vulnerabilities in the Adobe Commerce and Magento Open Source. Adobe noted that successful exploitation could lead to arbitrary code execution, privilege escalation, and arbitrary file system read. The Adobe PSIRT team also updated the Adobe Dimension software to cover three flaws that expose Windows and macOS users to arbitrary code execution and memory leaks.
SecurityWeek reports: "Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns"