Microsoft, Adobe security updates coming on 'patch Tuesday'
Friday, June 5, 2009
Adobe will release its first batch of quarterly security patches on Tuesday June 9th, the same day that the monthly security update comes out from Microsoft.
Adobe said it expects to deliver critical security updates for Adobe Reader and Acrobat versions 7.x, 8.x and 9.x for Windows and Macintosh, with Unix updates coming "when available."
The company said it would begin issuing quarterly patches to coincide with Microsoft's "patch Tuesday" after it came under intense criticism for its perceived lack of responsiveness to flaws in Reader and Acrobat.
Flaws in the software allowed hackers to remotely execute code as happened in February via a JBIG2 image file that unleashed a Trojan horse.
In a blog post last month, Adobe's security chief Brad Arkin said the company took the criticism to heart.
"The JBIG2 issue also sparked a lot of conversation internally at Adobe from executives to testers and developers," Arkin wrote. "What started out as a routine incident response expanded to a broader effort by Adobe Reader and Acrobat engineers, culminating in permanent changes to our software security approach for those products."
Meanwhile, Microsoft will issue 10 security patches on Tuesday for flaws in Windows, Excel and Internet Explorer, six of which are rated as critical.
Microsoft will host a webcast to address customer questions on these bulletins on June 10th.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
