Adobe security update to fix zero-day bugs promised tomorrow


Adobe security update to fix zero-day bugs promised tomorrow

Warwick Ashford

Adobe has announced that it expects to release a fix for a zero-day vulnerability for Flash Player 10.x for Windows, Mac and Linux by 10 June.

This is well within the 15-days rapid-response time recently claimed by Brad Arkin, Adobe's director of security and privacy.

Arkin said the firm's security team is now able to respond to serious threats within this time-frame as a result of improvements in the team's internal processes.

But Adobe has yet to announce a release date for a fix for Flash Player 10.x for Solaris, and fixes for a zero-day vulnerability in Adobe Reader and Acrobat 9.3.3 for Windows, Mac and Unix, also announced on 4 June, are expected only on 29 June.

Adobe said the Acrobat and Reader update represents an accelerated release of the next quarterly security updat, due on 13 July 2010.

"With this accelerated scheduled we do not plan to release any new updates for Adobe Reader and Acrobat in July," the company said.

The accelerated update will also resolve a number of responsibly-disclosed vulnerabilities, which will be detailed in the security bulletin and release notes that will be published when the security update is released, said Arkin in a blog post.

Until the fixes are released, Adobe has published mitigation information in a security advisory for Flash Player for Windows and Adobe Reader and Acrobat 9.x for Windows and Mac and Linux.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy