Adobe update fixes vulnerabilities in Acrobat
Adobe has released security updates for Acrobat, Acrobat Reader and Lightroom plus an update for the Flash Player.
Adobe fixed some non-security related bugs in Flash Player. The new version 184.108.40.2064 is available for all platforms except for the Flash Player integrated in Internet Explorer and Edge (EdgeHTML). The Flash Player will be discontinued at the end of the year and is rarely needed on the web.
Adobe has closed a total of 26 security vulnerabilities in the PDF tools Acrobat and Acrobat Reader. These include 11 vulnerabilities that Adobe classified as critical. Nine of these are suitable for injecting arbitrary code using prepared PDF files and executing it with user rights. The other gaps are shown as high risk (important).
The raw developer Lightroom Classic up to and including version 220.127.116.11 for Windows contains a security vulnerability (CVE-2020-9724) that can load program libraries (DLLs) in an unsafe manner. This means that an attacker could slip a manipulated DLL into the software and thus at least obtain higher rights. An update to version 9.3, which is also available for macOS, can help.
Read the latest Adobe security bulletins on this page.
Make sure to keep your Adobe software up to date!