Acrobatic Tumble: Serious Flaws in Adobe Reader 8.1.2
Adobe cautions in an advisory against a whole series of flaws in Adobe Reader 8.1.2. Most of them also affect Linux.
Adobe provides new packages for 8.1.3 to react quickly to the problem, mainly discovered by iDefense Labs and the Zero Day initiative. You can get the complete security bulletin here.
The advisory affects a number of CVE numbers dealing with vulnerabilities mainly from attack from special code in PDF data, causing a potential system crash and even yielding control of the system. Fortunately no cases have yet been recorded. The CVEs are:
CVE-2008-4812
The CVE-2008-4816 should affect Windows only, but CVE-2008-2992 has been known since July of this year and involves format attacks using the util.printf() JavaScript function.
Few distributions provide Adobe Reader in their repositories because it isn't free software. They usually refer to the Adobe download site that provides RPM, Debian and tar.gz installers. Users should pull in the newest version indicated, although Reader 9 isn't included for Linux.
Comments
comments powered by DisqusSubscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Container-Based Fedora Hummingbird Designed for Agent-First Builders
Fedora Hummingbird brings the same approach to the host OS as it does to containers to level up security.
-
Linux kernel Developers Considering a Kill Switch
With the rise of Linux vulnerabilities, the kernel developers are now considering adding a component that could help temporarily mitigate against them… in the form of a kill switch.
-
Fedora 44 Now Gaming Ready
The latest version of Fedora has been released with gaming support.
-
Manjaro 26.1 Preview Unveils New Features
The latest Manjaro 26.1 preview has been released with new desktop versions, a new kernel, and more.
-
Microsoft Issues Warning About Linux Vulnerability
The company behind Windows has released information about a flaw that affects millions of Linux systems.
-
Is AI Coming to Your Ubuntu Desktop?
According to the VP of Engineering at Canonical, AI could soon be added to the Ubuntu desktop distribution.
-
Framework Laptop 13 Pro Competes with the Best
Framework has released what might be considered the MacBook of Linux devices.
-
The Latest CachyOS Features Supercharged Kernel
The latest release of CachyOS brings with it an enhanced version of the latest Linux kernel.
-
Kernel 7.0 Is a Bit More Rusty
Linux kernel 7.0 has been released for general availability, with Rust finally getting its due.
-
France Says "Au Revoir" to Microsoft
In a move that should surprise no one, France announced plans to reduce its reliance on US technology, and Microsoft Windows is the first to get the boot.
http://www.mbttrainersshoes.com
mbt trainers shoes are physiological walking shoes. Masai Barefoot Technology,or MBT for short and their manufacturer boasts great benefits of wearing and using MBT walking shoes properly
Don't bother with Adobe Reader
I can confirm
The long and short of it is, I've removed adobe pdf reader, and use kpdf which seems to be a lighter-weight solution with more functionality anwyay.