Alert GCSA-22077 - Adobe Security Bulletin - Luglio 2022
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
******************************************************************
Alert ID: GCSA-22077
Data: 13 Luglio 2022
Titolo: Adobe Security Bulletin - Luglio 2022
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato i seguenti aggiornamenti di sicurezza:
APSB22-10 : Security updates available for Adobe RoboHelp
APSB22-32 : Security Updates Available for Adobe Acrobat and Reader
APSB22-34 : Security Updates Available for Adobe Character and Animator
APSB22-35 : Security Update Available for Adobe Photoshop
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
Adobe RoboHelp RH202.0.7 per Windows e macOS e versioni precedenti
Adobe Acrobat DC e Acrobat Reader DC 22.001.20142 per Windows e macOS e versioni precedenti
Adobe Acrobat e Acrobat Reader 2020 20.005.30334 per Windows e versioni precedenti
Adobe Acrobat e Acrobat Reader 2020 20.005.30331 per macOS e versioni precedenti
Adobe Acrobat e Acrobat Reader 2017 17.012.30229 per Windows e versioni precedenti
Adobe Acrobat e Acrobat Reader 2017 17.012.30227 per macOS e versioni precedenti
Adobe Character Animator 2021 4.4.7 per Windows e macOS e versioni precedenti
Adobe Character Animator 2022 22.4 per Windows e macOS e versioni precedenti
Adobe Photoshop 2021 22.5.7 per Windows e macOS e versioni precedenti
Adobe Photoshop 2022 23.3.2 per Windows e macOS e versioni precedenti
:: Impatto
Remote Code Execution (RCE)
:: Soluzioni
Aggiornare i software alle ultime versioni
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security/security-bulletin.html
https://helpx.adobe.com/security/products/robohelp/apsb22-10.html
https://helpx.adobe.com/security/products/acrobat/apsb22-32.html
https://helpx.adobe.com/security/products/character_animator/apsb22-34.html
https://helpx.adobe.com/security/products/photoshop/apsb22-35.html
CSIRT Italia
https://www.csirt.gov.it/contenuti/adobe-rilascia-aggiornamenti-per-sanare-diverse-vulnerabilita-al04-220713-csirt-ita
CIS - Center for Internet Security
https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-adobe-products-could-allow-for-arbitrary-code-execution_2022-090
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23201
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34216
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34217
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34219
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34220
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34221
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34222
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34223
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34224
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34225
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34226
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34227
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34228
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34229
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34230
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34232
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34233
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34236
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34237
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34238
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34239
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34241
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34242
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34243
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34244
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EAREIAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCYs6njgAKCRDBnEyTZRJg
QrsOAJ9GOiqyZ3qQiLJEG5aybL8V9zdChACgqpGPX35jyArgVfVuRD0FaPOgOiE=
=a+qO
-----END PGP SIGNATURE-----
Hash: SHA256
******************************************************************
Alert ID: GCSA-22077
Data: 13 Luglio 2022
Titolo: Adobe Security Bulletin - Luglio 2022
******************************************************************
:: Descrizione del problema
Adobe ha rilasciato i seguenti aggiornamenti di sicurezza:
APSB22-10 : Security updates available for Adobe RoboHelp
APSB22-32 : Security Updates Available for Adobe Acrobat and Reader
APSB22-34 : Security Updates Available for Adobe Character and Animator
APSB22-35 : Security Update Available for Adobe Photoshop
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
Adobe RoboHelp RH202.0.7 per Windows e macOS e versioni precedenti
Adobe Acrobat DC e Acrobat Reader DC 22.001.20142 per Windows e macOS e versioni precedenti
Adobe Acrobat e Acrobat Reader 2020 20.005.30334 per Windows e versioni precedenti
Adobe Acrobat e Acrobat Reader 2020 20.005.30331 per macOS e versioni precedenti
Adobe Acrobat e Acrobat Reader 2017 17.012.30229 per Windows e versioni precedenti
Adobe Acrobat e Acrobat Reader 2017 17.012.30227 per macOS e versioni precedenti
Adobe Character Animator 2021 4.4.7 per Windows e macOS e versioni precedenti
Adobe Character Animator 2022 22.4 per Windows e macOS e versioni precedenti
Adobe Photoshop 2021 22.5.7 per Windows e macOS e versioni precedenti
Adobe Photoshop 2022 23.3.2 per Windows e macOS e versioni precedenti
:: Impatto
Remote Code Execution (RCE)
:: Soluzioni
Aggiornare i software alle ultime versioni
:: Riferimenti
Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security/security-bulletin.html
https://helpx.adobe.com/security/products/robohelp/apsb22-10.html
https://helpx.adobe.com/security/products/acrobat/apsb22-32.html
https://helpx.adobe.com/security/products/character_animator/apsb22-34.html
https://helpx.adobe.com/security/products/photoshop/apsb22-35.html
CSIRT Italia
https://www.csirt.gov.it/contenuti/adobe-rilascia-aggiornamenti-per-sanare-diverse-vulnerabilita-al04-220713-csirt-ita
CIS - Center for Internet Security
https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-adobe-products-could-allow-for-arbitrary-code-execution_2022-090
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23201
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34216
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34217
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34219
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34220
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34221
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34222
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34223
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34224
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34225
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34226
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34227
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34228
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34229
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34230
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34232
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34233
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34236
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34237
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34238
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34239
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34241
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34242
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34243
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34244
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EAREIAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCYs6njgAKCRDBnEyTZRJg
QrsOAJ9GOiqyZ3qQiLJEG5aybL8V9zdChACgqpGPX35jyArgVfVuRD0FaPOgOiE=
=a+qO
-----END PGP SIGNATURE-----