Adobe updated Acrobat, Reader and Photoshop fixing 47 vulnerabilities.
The security holes have been addressed in the Windows and macOS versions of Acrobat DC (Consumer and Classic 2015), Acrobat Reader DC (Consumer and Classic 2015), Acrobat 2017, and Acrobat Reader 2017.
The flaws have been resolved with the release of versions 2018.011.20040, 2017.011.30080 and 2015.006.30418, officials said.
The issues include 24 critical memory corruptions that allow arbitrary code execution in the context of the targeted user, and various types of “important” issues that can lead to information disclosure or security bypasses.
Adobe also said support for Acrobat and Reader 11.x ended on October 15, 2017, and version 11.0.23 is the final release for these branches. Users have been advised to update to the latest versions of Acrobat DC and Acrobat Reader DC.
Adobe also released updates for the Windows and macOS versions of Photoshop CC to address an out-of-bounds write issue.
Photoshop CC 2018 version 19.1.4 and Photoshop CC 2017 version 18.1.4 fix the critical out-of-bounds write issue that can end up leveraged for arbitrary code execution in the context of the targeted user.
The previous round of security updates for Acrobat and Reader resolved 39 vulnerabilities. However, those updates had been assigned a priority rating of “2,” which makes them less likely to be exploited, while the latest patches have been given a priority rating of “1,” which means exploitation is more likely and users should update as soon as possible.