Adobe releases patches for vulnerabilities in Reader and Acrobat

Adobe releases patches for vulnerabilities in Reader and Acrobat

Hello everyone,

 

In this month's security release, Adobe has fixed security vulnerabilities in Reader and Acrobat for Windows and macOS. If these vulnerabilities are exploited, they could cause remote code execution attacks and information leaks. The details of the vulnerabilities are as follows: 


CVE-ID

Severity

Impact

CVE-2020-9610

Important

Application denial-of-service

CVE-2020-9612

Critical

Arbitrary Code Execution         

CVE-2020-9615

Critical

Security feature bypass

CVE-2020-9597

CVE-2020-9594

Critical

Arbitrary Code Execution 

CVE-2020-9614

CVE-2020-9613
CVE-2020-9596
CVE-2020-9592

Critical

Security feature bypass

CVE-2020-9611

Important

Application denial-of-service

CVE-2020-9609

CVE-2020-9608
CVE-2020-9603
CVE-2020-9602
CVE-2020-9601
CVE-2020-9600
CVE-2020-9599

Important

Information disclosure

CVE-2020-9605

CVE-2020-9604

Critical

Arbitrary Code Execution

CVE-2020-9607

CVE-2020-9606

Critical

Arbitrary Code Execution         

CVE-2020-9598

CVE-2020-9595
CVE-2020-9593

Important

Information disclosure


The affected versions include:
  • Acrobat DC Continuous - 2020.006.20042 and earlier versions 

  • Acrobat Reader DC Continuous - 2020.006.20042 and earlier versions 

  • Acrobat 2017 Classic 2017 - 2017.011.30166  and earlier versions 

  • Acrobat Reader 2017 Classic 2017 - 2017.011.30166 and earlier versions

  • Acrobat 2015 Classic 2015 - 2015.006.30518 and earlier versions

  • Acrobat Reader 2015 Classic 2015 - 2015.006.30518 and earlier versions 

To patch these vulnerabilities, initiate a sync between the Patch Manager Plus server and the Central Patch repository. Search for the following Patch IDs or Bulletin IDs and install them in your target systems. 


Patch ID

Bulletin ID

Description

314205

TU-753

Adobe Acrobat 2017 Pro and Standard (Acrobat 2017 Track) update - All languages (17.011.30171) (APSB20-24)

314206

TU-135

Adobe Acrobat DC Pro and Standard (Classic Track) update - All languages (15.006.30523) (APSB20-24)

314207

TU-137

Adobe Acrobat DC Pro and Standard (Continuous Track) update - All languages (20.009.20063) (APSB20-24

314208

TU-754

Adobe Acrobat Reader 2017 MUI (Classic Track) (17.011.30171) (APSB20-24)

314209

TU-072

Adobe Acrobat Reader DC (Continuous Track) update - All languages (20.009.20063) (APSB20-24)

314210 

TU-073

Adobe Acrobat Reader MUI DC (Continuous Track) update - All languages (20.009.20063) (APSB20-24)

314211

TU-136

Adobe Acrobat Reader MUI DC (Classic Track) update - All languages (15.006.30523) (APSB20-24)


Cheers, 

The ManageEngine Team


                New to ADSelfService Plus?