Adobe Product Security Incident Response Team (PSIRT) Blog

Adobe Product Security Incident Response Team (PSIRT) Blog http://blogs.adobe.com/psirt Working to help protect customers from vulnerabilities in Adobe software. Contact us at PSIRT(at)adobe(dot)com. Sat, 12 May 2012 05:04:08 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 Update to Security Bulletins for Adobe Illustrator (APSB12-10), Adobe Photoshop (APSB12-11) and Adobe Flash Professional (APSB12-12) http://blogs.adobe.com/psirt/2012/05/update-to-security-bulletins-for-adobe-illustrator-apsb12-10-adobe-photoshop-apsb12-11-and-adobe-flash-professional-apsb12-12.html http://blogs.adobe.com/psirt/2012/05/update-to-security-bulletins-for-adobe-illustrator-apsb12-10-adobe-photoshop-apsb12-11-and-adobe-flash-professional-apsb12-12.html#comments Sat, 12 May 2012 03:48:55 +0000 David Lenoe http://blogs.adobe.com/psirt/?p=705 We just updated the following Security Bulletins initially posted on Tuesday, May 8, 2012:

We are in the process of resolving the vulnerabilities addressed in these Security Bulletins in Adobe Illustrator CS5.x, Adobe Photoshop CS5.x (12.x) and Adobe Flash Professional CS5.x, and will update the respective Security Bulletins once the patches are available.

Users may monitor the latest information on the Adobe Product Security Incident Response Team blog at http ://blogs.adobe.com /psirt or by subscribing to the RSS feed at http ://blogs.adobe.com /psirt /atom.xml.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/05/update-to-security-bulletins-for-adobe-illustrator-apsb12-10-adobe-photoshop-apsb12-11-and-adobe-flash-professional-apsb12-12.html/feed 0 Adobe Security Bulletins Posted http://blogs.adobe.com/psirt/2012/05/adobe-security-bulletins-posted.html http://blogs.adobe.com/psirt/2012/05/adobe-security-bulletins-posted.html#comments Tue, 08 May 2012 17:18:25 +0000 Josh Kebbel-Wyen http://blogs.adobe.com/psirt/?p=699 Today, we released the following Security Bulletins:

Customers of the affected products should consult the relevant Security Bulletin(s) for details.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/05/adobe-security-bulletins-posted.html/feed 0 Security update available for Adobe Flash Player (APSB12-09) http://blogs.adobe.com/psirt/2012/05/security-update-available-for-adobe-flash-player-apsb12-09.html http://blogs.adobe.com/psirt/2012/05/security-update-available-for-adobe-flash-player-apsb12-09.html#comments Fri, 04 May 2012 14:28:29 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=687 Today, a Security Bulletin (APSB12-09) has been posted to address a critical security issue in Adobe Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.7 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and 2.x. Adobe recommends users apply the updates for their product installations. There are reports that the object confusion vulnerability (CVE-2012-0779) addressed in this update is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/05/security-update-available-for-adobe-flash-player-apsb12-09.html/feed 0 Security updates released for Adobe Reader and Acrobat (APSB12-08) http://blogs.adobe.com/psirt/2012/04/security-updates-released-for-adobe-reader-and-acrobat-apsb12-08.html http://blogs.adobe.com/psirt/2012/04/security-updates-released-for-adobe-reader-and-acrobat-apsb12-08.html#comments Tue, 10 Apr 2012 16:48:33 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=680 Today, a Security Bulletin (APSB12-08) has been posted in regards to this quarter’s security updates for Adobe Reader and Acrobat. Adobe recommends that users apply the updates for their product installations.

For additional information related to today’s updates, please refer to the ASSET blog post.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/04/security-updates-released-for-adobe-reader-and-acrobat-apsb12-08.html/feed 0 Prenotification: Quarterly Security Updates for Adobe Reader and Acrobat http://blogs.adobe.com/psirt/2012/04/prenotification-quarterly-security-updates-for-adobe-reader-and-acrobat-6.html http://blogs.adobe.com/psirt/2012/04/prenotification-quarterly-security-updates-for-adobe-reader-and-acrobat-6.html#comments Thu, 05 Apr 2012 18:22:18 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=677 A prenotification Security Advisory has been posted in regards to the upcoming quarterly Adobe Reader and Acrobat updates scheduled for Tuesday, April 10, 2012.

We will continue to provide updates on the upcoming release via the Security Advisory section of the Adobe website as well as the Adobe PSIRT blog.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/04/prenotification-quarterly-security-updates-for-adobe-reader-and-acrobat-6.html/feed 0 Security update available for Adobe Flash Player in Google Chrome (update to APSB12-07) http://blogs.adobe.com/psirt/2012/04/security-update-available-for-adobe-flash-player-in-google-chrome-update-to-apsb12-07.html http://blogs.adobe.com/psirt/2012/04/security-update-available-for-adobe-flash-player-in-google-chrome-update-to-apsb12-07.html#comments Thu, 05 Apr 2012 17:34:57 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=672 Today, we have updated Security Bulletin (APSB12-07) to reference two additional CVEs specific to Adobe Flash Player integrated with Google Chrome (CVE-2012-0724 and CVE-2012-0725). Google Chrome will be updated automatically, so no user action is required. Adobe recommends Google Chrome users verify that they are updated with Google Chrome version 18.0.1025.151.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/04/security-update-available-for-adobe-flash-player-in-google-chrome-update-to-apsb12-07.html/feed 0 Security update available for Adobe Flash Player (APSB12-07) http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-07.html http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-07.html#comments Wed, 28 Mar 2012 14:01:56 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=669 Today, a Security Bulletin (APSB12-07) has been posted regarding priority 2 updates that address critical security issues in Adobe Flash Player 11.1.102.63 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 11.1.111.7 and earlier versions for Android 3.x and 2.x. Adobe recommends users apply the updates for their product installations.

With this update, we are enabling a new background updater for Windows platforms. For more information, please refer to the ASSET blog.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-07.html/feed 0 Security update released for ColdFusion (APSB12-06) http://blogs.adobe.com/psirt/2012/03/security-update-released-for-coldfusion-apsb12-06.html http://blogs.adobe.com/psirt/2012/03/security-update-released-for-coldfusion-apsb12-06.html#comments Tue, 13 Mar 2012 14:59:59 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=662 Today, a Security Bulletin (APSB12-06) has been posted regarding a priority 2 update that addresses an important security issue in Adobe ColdFusion 9.0.1 and earlier versions for Windows, Macintosh and UNIX. Adobe recommends users update their product installation using the instructions provided in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/03/security-update-released-for-coldfusion-apsb12-06.html/feed 0 Security update available for Adobe Flash Player (APSB12-05) http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-05.html http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-05.html#comments Mon, 05 Mar 2012 18:43:40 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=657 Today, a Security Bulletin (APSB12-05) has been posted regarding priority 2 updates that address critical security issues in Adobe Flash Player 11.1.102.62 and earlier versions for Windows, Macintosh, Linux and Solaris, Adobe Flash Player 11.1.115.6 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.6 and earlier versions for Android 3.x and 2.x. Adobe recommends users apply the updates for their product installations.

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/03/security-update-available-for-adobe-flash-player-apsb12-05.html/feed 0 Security update available for Adobe Flash Player (APSB12-03) http://blogs.adobe.com/psirt/2012/02/security-update-available-for-adobe-flash-player-apsb12-03.html http://blogs.adobe.com/psirt/2012/02/security-update-available-for-adobe-flash-player-apsb12-03.html#comments Wed, 15 Feb 2012 19:52:03 +0000 Wendy Poland http://blogs.adobe.com/psirt/?p=650 Today, a Security Bulletin (APSB12-03) has been posted to address critical security issues in Adobe Flash Player 11.1.102.55 and earlier versions for Windows, Macintosh, Linux and Solaris, Adobe Flash Player 11.1.112.61 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.5 and earlier versions for Android 3.x and 2.x. Adobe recommends users apply the updates for their product installations. There are reports that a cross-site scripting vulnerability (CVE-2012-0767) addressed in this update is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious link delivered in an email message (Internet Explorer on Windows only).

This posting is provided “AS IS” with no warranties and confers no rights.

]]> http://blogs.adobe.com/psirt/2012/02/security-update-available-for-adobe-flash-player-apsb12-03.html/feed 0