Alert GCSA-18063 - Aggiornamenti di sicurezza per prodotti Adobe
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-18063
Data: 16 agosto 2018
Titolo: Aggiornamenti di sicurezza per prodotti Adobe
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato degli aggiornamenti di sicurezza
che correggono vulnerabilita' presenti nei suoi prodotti:
APSB18-29 Security updates available for Adobe Acrobat and Reader
APSB18-26 Security update available for Adobe Experience Manager
APSB18-25 Security updates available for Adobe Flash Player
APSB18-20 Security update available for the Adobe Creative Cloud Desktop Application
Per una descrizione completa delle vulnerabilita' consultare
le segnalazioni ufficiali alla sezione "Riferimenti".
:: Software interessato
Adobe Acrobat DC Continuous 2018.011.20055 and earlier versions for Windows and MacOS
Adobe Acrobat Reader DC Continuous 2018.011.20055 and earlier versions for Windows and MacOS
Adobe Acrobat 2017 Classic 2017 2017.011.30096 and earlier versions for Windows and MacOS
Adobe Acrobat Reader 2017 Classic 2017 2017.011.30096 and earlier versions for Windows and MacOS
Adobe Acrobat DC Classic 2015 2015.006.30434 and earlier versions for Windows and MacOS
Adobe Acrobat Reader DC Classic 2015 2015.006.30434 and earlier versions for Windows and MacOS
Adobe Experience Manager 6.0 to 6.4 versions for all platform
Adobe Flash Player Desktop Runtime 30.0.0.134 and earlier versions for Windows, macOS and Linux
Adobe Flash Player for Google Chrome 30.0.0.134 and earlier versions for Windows, macOS, Linux and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 30.0.0.134 and earlier versions for Windows 10 and 8.1
Adobe Creative Cloud Desktop Application (installer) 4.5.0.324 and earlier versions for Windows
Per verificare la versione di Flash Player installata accedere alla seguente pagina
http://get.adobe.com/it/flashplayer/about/
se si utilizzano piu' browser effettuare il controllo da ognuno di essi.
:: Impatto
Esecuzione remota di codice arbitrario
Accesso utente via network e via local system
Rivelazione e modifica di informazioni
:: Soluzioni
Aggiornare alle seguenti versioni:
Acrobat DC Continuous 2018.011.20058 for Windows and macOS
Acrobat Reader DC Continuous 2018.011.20058 for Windows and macOS
Acrobat 2017 Classic 2017 2017.011.30099 for Windows and macOS
Acrobat Reader DC 2017 Classic 2017 2017.011.30099 for Windows and macOS
Acrobat DC Classic 2015 2015.006.30448 for Windows and macOS
Acrobat Reader DC Classic 2015 2015.006.30448 for Windows and macOS
Creative Cloud Desktop Application 4.5.5.342 for Windows
Per Adobe Experience Manager applicare gli aggiornamenti previsti per ciascuna versione
https://helpx.adobe.com/experience-manager/aem-releases-updates.html
Adobe Flash Player Desktop Runtime 30.0.0.154 for Windows, macOS 2
Adobe Flash Player for Google Chrome 30.0.0.154 for Windows, macOS, Linux, and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 30.0.0.154 for Windows 10 and 8.1 2
Adobe Flash Player Desktop Runtime 30.0.0.154 for Linux
https://get.adobe.com/it/flashplayer/
E' possibile anche configurare la funzione auto-update presente nel prodotto.
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security.html
https://helpx.adobe.com/security/products/acrobat/apsb18-29.html
https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html
https://helpx.adobe.com/security/products/flash-player/apsb18-25.html
https://helpx.adobe.com/security/products/creative-cloud/apsb18-20.html
Aggiornamenti di sicurezza per Adobe Flash Player
https://helpx.adobe.com/it/security/products/flash-player.html
Mitre CVE
I riferimenti CVE sono disponibili nell'advisory originale.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFbdT8xwZxMk2USYEIRArT/AJwMKmC4jsRGIN2p4m8J5Pwu6hQ+RQCgxB18
ZdA/pZWqP2yiBIz45LZ2wHQ=
=yuF6
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-18063
Data: 16 agosto 2018
Titolo: Aggiornamenti di sicurezza per prodotti Adobe
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato degli aggiornamenti di sicurezza
che correggono vulnerabilita' presenti nei suoi prodotti:
APSB18-29 Security updates available for Adobe Acrobat and Reader
APSB18-26 Security update available for Adobe Experience Manager
APSB18-25 Security updates available for Adobe Flash Player
APSB18-20 Security update available for the Adobe Creative Cloud Desktop Application
Per una descrizione completa delle vulnerabilita' consultare
le segnalazioni ufficiali alla sezione "Riferimenti".
:: Software interessato
Adobe Acrobat DC Continuous 2018.011.20055 and earlier versions for Windows and MacOS
Adobe Acrobat Reader DC Continuous 2018.011.20055 and earlier versions for Windows and MacOS
Adobe Acrobat 2017 Classic 2017 2017.011.30096 and earlier versions for Windows and MacOS
Adobe Acrobat Reader 2017 Classic 2017 2017.011.30096 and earlier versions for Windows and MacOS
Adobe Acrobat DC Classic 2015 2015.006.30434 and earlier versions for Windows and MacOS
Adobe Acrobat Reader DC Classic 2015 2015.006.30434 and earlier versions for Windows and MacOS
Adobe Experience Manager 6.0 to 6.4 versions for all platform
Adobe Flash Player Desktop Runtime 30.0.0.134 and earlier versions for Windows, macOS and Linux
Adobe Flash Player for Google Chrome 30.0.0.134 and earlier versions for Windows, macOS, Linux and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 30.0.0.134 and earlier versions for Windows 10 and 8.1
Adobe Creative Cloud Desktop Application (installer) 4.5.0.324 and earlier versions for Windows
Per verificare la versione di Flash Player installata accedere alla seguente pagina
http://get.adobe.com/it/flashplayer/about/
se si utilizzano piu' browser effettuare il controllo da ognuno di essi.
:: Impatto
Esecuzione remota di codice arbitrario
Accesso utente via network e via local system
Rivelazione e modifica di informazioni
:: Soluzioni
Aggiornare alle seguenti versioni:
Acrobat DC Continuous 2018.011.20058 for Windows and macOS
Acrobat Reader DC Continuous 2018.011.20058 for Windows and macOS
Acrobat 2017 Classic 2017 2017.011.30099 for Windows and macOS
Acrobat Reader DC 2017 Classic 2017 2017.011.30099 for Windows and macOS
Acrobat DC Classic 2015 2015.006.30448 for Windows and macOS
Acrobat Reader DC Classic 2015 2015.006.30448 for Windows and macOS
Creative Cloud Desktop Application 4.5.5.342 for Windows
Per Adobe Experience Manager applicare gli aggiornamenti previsti per ciascuna versione
https://helpx.adobe.com/experience-manager/aem-releases-updates.html
Adobe Flash Player Desktop Runtime 30.0.0.154 for Windows, macOS 2
Adobe Flash Player for Google Chrome 30.0.0.154 for Windows, macOS, Linux, and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 30.0.0.154 for Windows 10 and 8.1 2
Adobe Flash Player Desktop Runtime 30.0.0.154 for Linux
https://get.adobe.com/it/flashplayer/
E' possibile anche configurare la funzione auto-update presente nel prodotto.
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security.html
https://helpx.adobe.com/security/products/acrobat/apsb18-29.html
https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html
https://helpx.adobe.com/security/products/flash-player/apsb18-25.html
https://helpx.adobe.com/security/products/creative-cloud/apsb18-20.html
Aggiornamenti di sicurezza per Adobe Flash Player
https://helpx.adobe.com/it/security/products/flash-player.html
Mitre CVE
I riferimenti CVE sono disponibili nell'advisory originale.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFbdT8xwZxMk2USYEIRArT/AJwMKmC4jsRGIN2p4m8J5Pwu6hQ+RQCgxB18
ZdA/pZWqP2yiBIz45LZ2wHQ=
=yuF6
-----END PGP SIGNATURE-----