Patch/Configuration Management, Vulnerability Management

Adobe addresses Reader, Acrobat issues for March Patch Tuesday

Adobe's first Patch Tuesday of 2016 features 17 fixes for various versions of Reader and Acrobat, all rated critical.

The security bulletin said the impacted products are Acrobat Reader DC and Acrobat DC, versions 15.009.20077 and earlier for Windows and Macintosh; and Acrobat XI and Reader XI, versions 11.0.13 for Windows and Macintosh.

Five patches resolve use-after-free vulnerabilities, another fixes a double-free vulnerability, nine address memory corruption problems, one resolves a method to bypass restrictions on Javascript API execution and the last updates Adobe Download Manager. All but the last could lead to code execution.

Adobe said to SCMagazine.com in a Tuesday email that none have been found in the wild.

This release comes closely after an unscheduled patch release in late December to fix several critical issues with Flash Player. However, the number of issued fix this month pales in comparison to December's Patch Tuesday when Adobe sent out 78.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.