Acrobatic Tumble: Serious Flaws in Adobe Reader 8.1.2
Adobe cautions in an advisory against a whole series of flaws in Adobe Reader 8.1.2. Most of them also affect Linux.
Adobe provides new packages for 8.1.3 to react quickly to the problem, mainly discovered by iDefense Labs and the Zero Day initiative. You can get the complete security bulletin here.
The advisory affects a number of CVE numbers dealing with vulnerabilities mainly from attack from special code in PDF data, causing a potential system crash and even yielding control of the system. Fortunately no cases have yet been recorded. The CVEs are:
CVE-2008-4812
The CVE-2008-4816 should affect Windows only, but CVE-2008-2992 has been known since July of this year and involves format attacks using the util.printf() JavaScript function.
Few distributions provide Adobe Reader in their repositories because it isn't free software. They usually refer to the Adobe download site that provides RPM, Debian and tar.gz installers. Users should pull in the newest version indicated, although Reader 9 isn't included for Linux.
Comments
comments powered by Disqus
Issue 239/2020
Buy this issue as a PDF
News
-
Linux Deepin 20 Released
One of the most beautiful Linux distributions on the market has been refreshed.
-
A New Version of Zorin OS is Now Available
Fan-favorite, Zorin OS 15.3 is officially available.
-
Lenovo Now Offering Fedora Linux as an Option
Lenovo is making good on their Linux promise by adding Fedora into the mix.
-
System76 Launches new High-End Laptop
System76 has unleashed a beast of a mobile workstation.
-
Mozilla Lays Off Staff, Receives More Cash
In a restructuring move, Mozilla lays off 250 employees, but then inks large deal with Google.
-
LibreOffice 7 Now Available
The LibreOffice 7 office suite is now available with important compatibility improvements.
-
Microsoft Brings procmon to Linux
The creators of Windows have brought the sysinternals procmon tool to the open source operating system.
-
New KDE Slimbook Available
The makers of the KDE Slimbook have released a Ryzen-4000 powered laptop.
-
PinePhone Now Offers a Convergence Package
The makers of the Linux PinePhone are now offering a model that makes desktop/mobile convergence a reality.
-
Flutter is Coming to Linux
Google and Canonical have joined forces to bring Flutter to the Linux desktop.
http://www.mbttrainersshoes.com
mbt trainers shoes are physiological walking shoes. Masai Barefoot Technology,or MBT for short and their manufacturer boasts great benefits of wearing and using MBT walking shoes properly
Don't bother with Adobe Reader
I can confirm
The long and short of it is, I've removed adobe pdf reader, and use kpdf which seems to be a lighter-weight solution with more functionality anwyay.