Alert GCSA-17048 - Aggiornamento di sicurezza per prodotti Adobe
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17048
Data: 9 Agosto 2017
Titolo: Aggiornamento di sicurezza per prodotti Adobe
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato degli aggiornamenti di sicurezza
che correggono vulnerabilita' presenti in Adobe Flash player, Adobe
Acrobat e Reader, Adobe Experience Manager e Adobe Digital Editions.
Per una descrizione completa delle vulnerabilita' consultare
le segnalazioni ufficiali alla sezione "Riferimenti".
:: Software interessato
Adobe Flash Player Desktop Runtime 26.0.0.137
e precedenti per Windows, Macintosh e Linux
Adobe Flash Player per Google Chrome 26.0.0.137
e precedenti per Windows, Macintosh, Linux e Chrome OS
Adobe Flash Player per Microsoft Edge e Internet Explorer 11
Adobe Acrobat e Reader DC per Windows e Macintosh
Adobe Acrobat e Reader 2017 per Windows e Macintosh
Adobe Acrobat e Reader XI per Windows e Macintosh
Adobe Experience Manager 6.3, 6.2, 6.1 e 6.0
Adobe Digital Editions 4.5.5 e precedenti
per Windows, Macintosh, iOS e Android
:: Impatto
Esecuzione remota di codice arbitrario
Security bypass
Information Disclosure
:: Soluzioni
Aggiornare i prodotti Adobe Flash Player, Adobe Acrobat e Reader
e Adobe Digital Editions alle ultime versioni disponibili e applicare
i più recenti hotfixes per Adobe Experience Manager
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security/products/flash-player/apsb17-23.html
https://helpx.adobe.com/security/products/acrobat/apsb17-24.html
https://helpx.adobe.com/security/products/experience-manager/apsb17-26.html
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-27.html
Security Tracker
http://securitytracker.com/id/1039100
http://securitytracker.com/id/1039099
http://securitytracker.com/id/1039098
http://securitytracker.com/id/1039088
Security Focus
http://www.securityfocus.com/bid/100195
http://www.securityfocus.com/bid/100194
http://www.securityfocus.com/bid/100193
http://www.securityfocus.com/bid/100191
Riferimenti CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3085
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11274
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11276
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11279
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11280
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11272
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3038
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3116
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3117
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3119
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3120
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3121
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3122
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3123
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3124
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11209
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11210
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11211
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11214
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11216
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11217
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11218
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11219
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11220
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11221
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11222
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11223
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11224
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11226
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11227
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11228
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11229
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11230
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11231
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11232
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11233
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11234
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11235
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11236
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11237
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11238
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11239
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11241
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11242
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11243
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11244
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11246
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11249
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11252
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11254
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11255
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11256
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11257
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11258
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11259
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11260
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11261
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11262
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11263
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11265
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11267
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11268
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11270
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11271
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlmLFzAACgkQwZxMk2USYELYSgCgjWGDitW2oQhyNRmcYdQS8FtL
TgQAn13GuMxK4KLBQIQt9ImI8vzucDr4
=oxVT
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17048
Data: 9 Agosto 2017
Titolo: Aggiornamento di sicurezza per prodotti Adobe
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato degli aggiornamenti di sicurezza
che correggono vulnerabilita' presenti in Adobe Flash player, Adobe
Acrobat e Reader, Adobe Experience Manager e Adobe Digital Editions.
Per una descrizione completa delle vulnerabilita' consultare
le segnalazioni ufficiali alla sezione "Riferimenti".
:: Software interessato
Adobe Flash Player Desktop Runtime 26.0.0.137
e precedenti per Windows, Macintosh e Linux
Adobe Flash Player per Google Chrome 26.0.0.137
e precedenti per Windows, Macintosh, Linux e Chrome OS
Adobe Flash Player per Microsoft Edge e Internet Explorer 11
Adobe Acrobat e Reader DC per Windows e Macintosh
Adobe Acrobat e Reader 2017 per Windows e Macintosh
Adobe Acrobat e Reader XI per Windows e Macintosh
Adobe Experience Manager 6.3, 6.2, 6.1 e 6.0
Adobe Digital Editions 4.5.5 e precedenti
per Windows, Macintosh, iOS e Android
:: Impatto
Esecuzione remota di codice arbitrario
Security bypass
Information Disclosure
:: Soluzioni
Aggiornare i prodotti Adobe Flash Player, Adobe Acrobat e Reader
e Adobe Digital Editions alle ultime versioni disponibili e applicare
i più recenti hotfixes per Adobe Experience Manager
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security/products/flash-player/apsb17-23.html
https://helpx.adobe.com/security/products/acrobat/apsb17-24.html
https://helpx.adobe.com/security/products/experience-manager/apsb17-26.html
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-27.html
Security Tracker
http://securitytracker.com/id/1039100
http://securitytracker.com/id/1039099
http://securitytracker.com/id/1039098
http://securitytracker.com/id/1039088
Security Focus
http://www.securityfocus.com/bid/100195
http://www.securityfocus.com/bid/100194
http://www.securityfocus.com/bid/100193
http://www.securityfocus.com/bid/100191
Riferimenti CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3085
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11274
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11276
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11279
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11280
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11272
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3038
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3116
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3117
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3119
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3120
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3121
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3122
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3123
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3124
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11209
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11210
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11211
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11214
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11216
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11217
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11218
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11219
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11220
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11221
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11222
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11223
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11224
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11226
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11227
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11228
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11229
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11230
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11231
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11232
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11233
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11234
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11235
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11236
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11237
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11238
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11239
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11241
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11242
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11243
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11244
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11246
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11249
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11252
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11254
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11255
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11256
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11257
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11258
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11259
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11260
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11261
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11262
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11263
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11265
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11267
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11268
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11270
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11271
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlmLFzAACgkQwZxMk2USYELYSgCgjWGDitW2oQhyNRmcYdQS8FtL
TgQAn13GuMxK4KLBQIQt9ImI8vzucDr4
=oxVT
-----END PGP SIGNATURE-----