Software program maker Adobe on Tuesday rolled out a large batch of security fixes to cowl critical-severity flaws in its Acrobat and Reader, ColdFusion, inDesign, inCopy and Audition merchandise.
As a part of its scheduled Patch Tuesday updates, Adobe documented 72 distinct security bugs and referred to as particular consideration to code-execution defects within the extensively deployed Adobe Acrobat and Reader software program.
In a critical-severity bulletin, Adobe documented at the least 17 Acrobat and Reader bugs that expose unpatched Home windows and macOS techniques to arbitrary code execution and reminiscence leak points.
Adobe additionally issued patches for at the least six distinct ColdFusion flaws that would result in arbitrary code execution and security characteristic bypass. The ColdFusion points are flagged as crucial and impacts variations 2023 and 2021.
The mega-patch bundle additionally consists of cowl for 5 vulnerabilities in RoboHelp Server (arbitrary code execution and reminiscence leak within the context of the present person); six documented Photoshop bugs (arbitrary code execution and reminiscence leak); seven denial-of-service and reminiscence leak points in InDesign; and three documented bugs exposing Adobe Bridge customers to reminiscence leakage.
The San Jose, Calif. vendor additionally lined code execution points within the Adobe FrameMaker Publishing Server and the Adobe Media Encoder and Adobe Premiere Professional.
Adobe mentioned it was not conscious of in-the-wild exploits for any of the documented vulnerabilities.
