-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Reference: CERT-EU Security Advisory 2013-0008 Title: Security updates for Adobe Reader and Acrobat [1] Version history: 9.01.2013 Initial publication Summary ======= Adobe has released security updates for Adobe Reader and Acrobat XI (11.0.0) and earlier versions for Windows and Macintosh, and Adobe Reader 9.5.1 and earlier 9.x versions for Linux. These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system. CVE numbers: CVE-2012-1530, CVE-2013-0601, CVE-2013-0602, CVE-2013-0603, CVE-2013-0604, CVE-2013-0605, CVE-2013-0606, CVE-2013-0607, CVE-2013-0608, CVE-2013-0609, CVE-2013-0610, CVE-2013-0611, CVE-2013-0612, CVE-2013-0613, CVE-2013-0614, CVE-2013-0615, CVE-2013-0616, CVE-2013-0617, CVE-2013-0618, CVE-2013-0619, CVE-2013-0620, CVE-2013-0621, CVE-2013-0622, CVE-2013-0623, CVE-2013-0624, CVE-2013-0626, CVE-2013-0627 Vulnerable systems ================== Adobe Reader XI (11.0.0) for Windows and Macintosh Adobe Reader X (10.1.4) and earlier 10.x versions for Windows and Macintosh Adobe Reader 9.5.2 and earlier 9.x versions for Windows and Macintosh Adobe Reader 9.5.1 and earlier 9.x versions for Linux Adobe Acrobat XI (11.0.0) for Windows and Macintosh Adobe Acrobat X (10.1.4) and earlier 10.x versions for Windows and Macintosh Adobe Acrobat 9.5.2 and earlier 9.x versions for Windows and Macintosh What can you do? ================ Adobe recommends users update their product installations to the latest versions: Users of Adobe Reader XI (11.0.0) for Windows and Macintosh should update to Adobe Reader XI (11.0.1). For users of Adobe Reader X (10.1.4) and earlier versions for Windows and Macintosh, who cannot update to Adobe Reader XI (11.0.1), Adobe has made available the update Adobe Reader X (10.1.5). For users of Adobe Reader 9.5.2 and earlier versions for Windows and Macintosh, who cannot update to Adobe Reader XI (11.0.1), Adobe has made available the update Adobe Reader 9.5.3. Users of Adobe Reader 9.5.1 and earlier versions for Linux should update to Adobe Reader 9.5.3. Users of Adobe Acrobat XI (11.0.0) for Windows and Macintosh should update to Adobe Acrobat XI (11.0.1). Users of Adobe Acrobat X (10.1.4) and earlier versions for Windows and Macintosh should update to Adobe Acrobat X (10.1.5). Users of Adobe Acrobat 9.5.2 and earlier versions for Windows and Macintosh should update to Adobe Acrobat 9.5.3. What to tell your users? ======================== Normal security best practices apply. Especially, inform your Web users to be cautious about attachments and following links to sites that are provided by unfamiliar or suspicious sources. Users are to be aware not to click on the link in suspicious emails; to immediately forward the suspicious email to the respective IT security officer / contact in your institution. More information ================ [1] http://www.adobe.com/support/security/bulletins/apsb13-02.html Best regards, CERT-EU Pre-configuration Team (http://cert.europa.eu) Phone: +32.2.2990005 / e-mail: cert-eu@ec.europa.eu PGP KeyID 0x46AC4383 FP: 9011 6BE9 D642 DD93 8348 DAFA 27A4 06CA 46AC 4383 Privacy Statement: http://cert.europa.eu/cert/plainedition/en/cert_privacy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBAgAGBQJQ7Za9AAoJEPpzpNLI8SVoXc4QAIDMBoowuTQQGI972RotxHb3 JtTeZ1SRE7ah3KleAiSkx119u/LRk1WtQBBN9j1zXy9mOAiYsZ2EUtl8suxiG1PO tzPWkqHZSDjeXWiurFsPVB0gC7d+TT/rpSNqk+y8FgimonNZ35cWuaWkWOZQ5TUA zhLFSTvXlN3uHqp17YGZ3haY3lTMGktyfDufHQN2CavmfGotiiRzNiHXVd55548S u7iKKcBIw8vKj9JmrVFNmHq/S/u/A5zK7+RMWnqBe6F2burIPRhkpVur3zERCNnR f4iIhwvZOlsvwCc+hoCzbuGTTL7p9C+2qAvks83JqI/sam5xB8ByiZcvw9MEK2oN BWar6W1urjSq2ufW+0buRQVgAFDpGd+XYGVTQPfbnX7dBw99v3upGX/USvokqlzR v83jzSAqXyh5fpPpaTJtOuTx62GzkRUgnBZauBj6vMB/IQGsJlf+REg4x5aKibLa MhvoZtw3CKCcSdWsRnlEmDibcwAB4qbhhwNU1u4RwyyDL9hq5WJ9b4BzuirhnvDD 7pRIE0W3iCm2EfbaHQcRfX3JX/wQG9wWWuLWKFd7Wwt2odB08QK/LNpY9KOxKj9A QfOUDSYtLQCoOPPAvSp81lDpj6fscwn2WkT2w23Y5OFWe+lyAk904dkTXqF5SF5Z WFSKrQGFxuKp51O5aH/1 =chHA -----END PGP SIGNATURE-----