Adobe released patches for Adobe Reader and Adobe Acrobat bringing the products up to versions 10.0.1, 9.4.2, or 8.2.6 for the three currently supported major versions. For the first time in a long time, Adobe was able to keep their scheduled quarterly updates. Congrats to them on being able to keep ahead of major security exploits making it public. The update does resolve about 30 critical vulnerabilities so it is recommended for all to update as soon as possible now that more information about the vulnerabilities have been disclosed. You can read about the specific vulnerabilities addressed in the patch in today’s related security bulletin.
You can download the patches from the Adobe FTP location:
- Reader 8.2.6 .msp
- Reader 9.4.2 .msp
- Reader 10.1 .exe
- Acrobat 8.2.6 .msp
- Acrobat 9.4.2 .msp
- Acrobat 10.0.1 Tier1 .msp
In addition to the security enhancements provided with this patch, the IT Matters Adobe blog reports, Acrobat 9.4.2 and Reader 9.4.2 gain backward compatibility with PDF portfolios created in Acrobat X with a few caveats worth reading about.
Microsoft didn’t want to feel left out, so they released 12 updates for today’s Patch Tuesday event. Three of those updates are rated as critical with 9 of them deemed important. You can read more about today’s Microsoft updates with the Internet Storm Center’s February 2011 Microsoft Black Tuesday Summary or the related ThreatPost write-up.