News

Adobe security update to fix zero-day bugs promised tomorrow

Adobe has announced that it expects to release a fix for a zero-day vulnerability for Flash Player 10.x for Windows, Mac and Linux by 10 June.

This is well within the 15-days rapid-response time recently claimed by Brad Arkin, Adobe's director of security and privacy.

Arkin said the firm's security team is now able to respond to serious threats within this time-frame as a result of improvements in the team's internal processes.

But Adobe has yet to announce a release date for a fix for Flash Player 10.x for Solaris, and fixes for a zero-day vulnerability in Adobe Reader and Acrobat 9.3.3 for Windows, Mac and Unix, also announced on 4 June, are expected only on 29 June.

Adobe said the Acrobat and Reader update represents an accelerated release of the next quarterly security updat, due on 13 July 2010.

"With this accelerated scheduled we do not plan to release any new updates for Adobe Reader and Acrobat in July," the company said.

The accelerated update will also resolve a number of responsibly-disclosed vulnerabilities, which will be detailed in the security bulletin and release notes that will be published when the security update is released, said Arkin in a blog post.

Until the fixes are released, Adobe has published mitigation information in a security advisory for Flash Player for Windows and Adobe Reader and Acrobat 9.x for Windows and Mac and Linux.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy