Adobe Updates Acrobat, Reader

October 13, 2009

A week ago Sunday I posted a note about a serious security problem with Adobe’s Acrobat and Reader (formerly Acrobat Reader) products.  The problem affected Reader versions 9.1.3 and earlier on all platforms (Mac, Windows, and Unix/Linux), and Acrobat 9.1.3 and earlier on Windows and Mac.

As promised, Adobe has released  a new version, 9.2,  of the software to address these (numerous) vulnerabilities.  The details are given in the Security Bulletin APSB09-15.   This is characterised as a Critical update, so I recommend all users install it as soon as they conveniently can.

For the Reader product, which most people will have, here are the download links:

Download links and further information for the Acrobat product are in the Security Bulletin mentioned above.

Microsoft Security Updates, October 2009

October 13, 2009

As expected, today Microsoft released thirteen security patches (the most ever), for thirty-four identified vulnerabilities, on its regular monthly schedule.  The Security Bulletin Summary contains details of the patches, affected software, and download locations.  The patches should also be available through the Windows Update service.  As I noted in my preview post, all of these vulnerabilities are rated Critical for at least some supported versions of Windows, and all supported versions have Critical vulnerabilities.  There are also patches that apply to Microsoft Office components, and to SQL Server. I recommend that you apply these patches as soon as possible.

As usual, the SANS Institute has their evaluation of the patches available on their site.

Update Tuesday, October 13, 16:50

Brian Krebs at the Washington Post has posted a note on month’s bumper crop of updates at his “Security Fix” blog.

%d bloggers like this: