GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Fri Jan 21, 2011 5:26 pm Post subject: [ GLSA 201101-08 ] Adobe Reader: Multiple vulnerabilities |
 |
|
Gentoo Linux Security Advisory
Title: Adobe Reader: Multiple vulnerabilities (GLSA 201101-08)
Severity: normal
Exploitable: remote
Date: January 21, 2011
Bug(s): #336508, #343091
ID: 201101-08
Synopsis
Multiple vulnerabilities in Adobe Reader might result in the execution of
arbitrary code.
Background
Adobe Reader (formerly Adobe Acrobat Reader) is a closed-source PDF
reader.
Affected Packages
Package: app-text/acroread
Vulnerable: < 9.4.1
Unaffected: >= 9.4.1
Architectures: All supported architectures
Description
Multiple vulnerabilities were discovered in Adobe Reader. For further
information please consult the CVE entries and the Adobe Security
Bulletins referenced below.
Impact
A remote attacker might entice a user to open a specially crafted PDF
file, possibly resulting in the execution of arbitrary code with the
privileges of the user running the application, or a Denial of Service.
Workaround
There is no known workaround at this time.
Resolution
All Adobe Reader users should upgrade to the latest stable version:
| Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/acroread-9.4.1" |
References
APSB10-21
APSB10-28
CVE-2010-2883
CVE-2010-2884
CVE-2010-2887
CVE-2010-2889
CVE-2010-2890
CVE-2010-3619
CVE-2010-3620
CVE-2010-3621
CVE-2010-3622
CVE-2010-3625
CVE-2010-3626
CVE-2010-3627
CVE-2010-3628
CVE-2010-3629
CVE-2010-3630
CVE-2010-3632
CVE-2010-3654
CVE-2010-3656
CVE-2010-3657
CVE-2010-3658
CVE-2010-4091
Last edited by GLSA on Sat Jan 22, 2011 4:29 am; edited 1 time in total |
|
News & Announcements
