Adobe Reader and Acrobat 9.4.6 update available for download

Adobe Reader and Acrobat 9.4.6 update available for download

Adobe Systems has released a security update for Adobe Reader 9.4.5 and earlier 9.x versions for Windows and Macintosh operating systems and for Adobe Acrobat 9.4.5 and earlier 9.x versions for Windows and Macintosh operating systems to resolve critical security issues.

Critical vulnerabilities have been identified in Adobe Reader 9.4.5 and earlier versions and Adobe Acrobat 9.4.5 and earlier versions for Windows and Macintosh. These vulnerabilities could cause the application to crash and potentially allow an attacker to take control of the affected system.

The Updates are available for download from the Adobe Download Center:

Adobe Reader 9.4.6 MUI and non-MUI update - All languages

  • Adobe Reader 9.4.6 MUI and non-MUI update - All languages
    This update provides system requirement enhancements, mitigation for security issues, improved overall stability, bug fixes, and feature enhancements. For a list of specific bug fixes, new features, and other changes in this release, see the Release Notes. This is a quarterly update for all languages listed in the Release Notes.
    http://www.adobe.com/support/downloads/detail.jsp?ftpID=5244
    Download -> AdbeRdrUpd946_all_incr.msp
    Adobe Reader users on Macintosh can also find the update here.

Adobe Acrobat 9.4.6 Pro, Pro Extended, Standard update - All languages

  • Adobe Acrobat 9.4.6 Pro, Pro Extended, Standard update - All languages
    This update provides system requirement enhancements, mitigation for security issues, improved overall stability, bug fixes, and feature enhancements. For a list of specific bug fixes, new features, and other changes in this release, see the Release Notes. This is a quarterly update for all languages.
    http://www.adobe.com/support/downloads/detail.jsp?ftpID=5237
    Download -> AcrobatUpd946_all_incr.msp
    Acrobat Pro users on Macintosh can also find the update here.

Adobe recommends users of Adobe Reader 9.4.5 and earlier 9.x versions for Windows and Macintosh update to Adobe Reader 9.4.6, available now. Adobe recommends users of Adobe Acrobat 9.4.5 for Windows and Macintosh update to Adobe Acrobat 9.4.6. Adobe Reader 9.4.6 for UNIX is currently scheduled to be released on November 7, 2011.

Adobe Reader® and Acrobat® 9.4.6 Release notes

  • Security - This security patch primarily provides vulnerability mitigations for vulnerabilities described in the security bulletin.
  • Updates - Reader 8 now redirects users to Reader 10.x products if they check for updates manually and none are available.
  • Signatures - A new registry/plist preference is available that specifies whether to show a warning that there is a greater forgery risk when revocation information is embedded in the signature. By default, this text is off, but users can turn the warning back on via this preference.

Bug fixes

  • A browser may freeze when closing some forms.
  • A signed PDF in a browser can cause a browser crash in rare cases.
  • IE 6 crashes with magnifier when entering data in a form text field.
  • Repeatedly opening and closing PDFs in one browser session may cause the browser to hang.
  • Acrobat Updater resets the "Adobe PDF" PostScript Printer Driver instance settings.
  • After updating, the Updater should give users a chance to save open files and data before a system restart.
  • PDFMaker for Office 2007 duplicates headings when both normal and custom headings exist in the same document.
  • PDFMaker for MS Office 2003: ES2 (LC 9.0) rendition removes spaces between the Kanji character and the English character while converting an MS word file to PDF.
  • Acrobat fails to display Rupee symbol.

Security updates for Adobe Reader and Acrobat 9.4.6

  • These updates resolve a local privilege-escalation vulnerability (Adobe Reader X (10.x) on Windows only) (CVE-2011-1353).
  • These updates resolve a security bypass vulnerability that could lead to code execution (CVE-2011-2431).
  • These updates resolve a buffer overflow vulnerability in the U3D TIFF Resource that could lead to code execution (CVE-2011-2432).
  • These updates resolve a heap overflow vulnerability that could lead to code execution (CVE-2011-2433).
  • These updates resolve a heap overflow vulnerability that could lead to code execution (CVE-2011-2434).
  • These updates resolve an buffer overflow vulnerability that could lead to code execution (CVE-2011-2435).
  • These updates resolve a heap overflow vulnerability in the Adobe image parsing library that could lead to code execution (CVE-2011-2436).
  • These updates resolve a heap overflow vulnerability that could lead to code execution (CVE-2011-2437).
  • These updates resolve three stack overflow vulnerabilities in the Adobe image parsing library that could lead to code execution (CVE-2011-2438).
  • These updates resolve a memory leakage condition vulnerability that could lead to code execution (CVE-2011-2439).
  • These updates resolve a use-after-free vulnerability that could lead to code execution (CVE-2011-2440).
  • These updates resolve two stack overflow vulnerabilities in the CoolType.dll library that could lead to code execution (CVE-2011-2441).
  • These updates resolve a logic error vulnerability that could lead to code execution (CVE-2011-2442).
  • These updates also incorporate the Adobe Flash Player updates as noted in Security Bulletin APSB11-21.
  • The next quarterly security updates for Adobe Reader and Acrobat are currently scheduled for December 13, 2011.

Adobe Reader® and Acrobat® 9.4.6 Release notes

Diesen Artikel auf Twitter oder Google+ weiterempfehlen

Diesen Artikel auf Twitter weiterempfehlen Diesen Artikel auf Google+ weiterempfehlen
© 2014 Valdet Beqiraj |it-blogger.net Impressum und Datenschutz