Adobe Acrobat/Reader Sept. 2018 security update

win7[German]On September 19, 2018, Adobe released security updates for its two products Adobe Acrobat and Adobe Reader. These fix several vulnerabilities found in the products.


Advertising

I received a comment about that within my German blog (thanks for that). Adobe published details about the security update on September 19, 2018 within the Security Bulletin APSB18-34 and assigned it priority 2. The following table shows the fixed vulnerabilities.

Vulnerability Category Vulnerability Impact Severity CVE Number
Out-of-bounds write Arbitrary Code Execution Critical CVE-2018-12848
Out-of-bounds read Information Disclosure Important

CVE-2018-12849
CVE-2018-12850
CVE-2018-12801
CVE-2018-12840
CVE-2018-12778
CVE-2018-12775

The Adobe Acrobat and Reader versions for Windows and macOS enlisted within the following table are affected by these vulnerabilities. 

Product Track Affected Versions Platform Priority rating
Acrobat DC Continuous 2018.011.20058 and earlier versions Windows and macOS 2
Acrobat Reader DC Continuous 2018.011.20058 and earlier versions Windows and macOS 2
         
Acrobat 2017 Classic 2017 2017.011.30099 and earlier versions Windows and macOS 2
Acrobat Reader 2017 Classic 2017 2017.011.30099 and earlier versions Windows and macOS 2
         
Acrobat DC Classic 2015 2015.006.30448 and earlier versions Windows and macOS 2
Acrobat Reader DC Classic 2015 2015.006.30448 and earlier versions Windows and macOS 2

The download addresses of the updated product versions are linked in the following table.

Product Track Updated Versions Platform Availability
Acrobat DC Continuous 2018.011.20063 Windows and macOS Windows
macOS
Acrobat Reader DC Continuous 2018.011.20063 Windows and macOS Windows
macOS
         
Acrobat 2017 Classic 2017 2017.011.30102 Windows and macOS Windows
macOS
Acrobat Reader DC 2017 Classic 2017 2017.011.30102 Windows and macOS Windows
macOS
         
Acrobat DC Classic 2015 2015.006.30452 Windows and macOS Windows
macOS
Acrobat Reader DC Classic 2015 2015.006.30452 Windows and macOS Windows
macOS

Ideally, the products should be updated to the corrected versions by an auto-update. Otherwise, an update search can be initiated in the product (see). Installers for corporate environments are linked under APSB18-34.

Similar articles:
Adobe Flash Player version 31.0.0.108 released
Microsoft Office-Updates (September 4, 2018)
Microsoft Security Update Summary September 11, 2018
Patchday: Updates for Windows 7/8.1/Server Sept. 11, 2018
Patchday Windows 10-Updates (September 11, 2018)
Patchday Microsoft Office Updates (September 11, 2018)
Microsoft Patchday: Other Updates September 11, 2018


Advertising

Patchday issues with updates & WSUS (September 11, 2018)


Advertising


This entry was posted in Security, Software, Update and tagged , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *