Alert GCSA-23020 - Adobe Security Bulletin

******************************************************************

Alert ID: GCSA-23020
data: 15 febbraio 2023
titolo: Adobe Security Bulletin - Febbraio 2023

******************************************************************

:: Descrizione del problema

Adobe ha rilasciato i seguenti aggiornamenti di sicurezza

APSB23-02 Security update available for Adobe After Effects
APSB23-05 Security update available for Adobe Connect
APSB23-06 Security update available for Adobe FrameMaker
APSB23-09 Security update available for Adobe Bridge
APSB23-11 Security update available for Adobe Photoshop
APSB23-12 Security update available for Adobe InDesign
APSB23-14 Security update available for Adobe Premiere Rush
APSB23-15 Security update available for Adobe Animate
APSB23-16 Security update available for Adobe Substance 3D Stager

Maggiori informazioni sono disponibili alla sezione "Riferimenti".

:: Software interessato

Adobe After Effects 23.1 and earlier versions
Adobe After Effects 22.6.3 and earlier versions
Adobe Connect 11.4.5 and earlier versions
Adobe Connect 12.1.5 and earlier versions
Adobe FrameMaker 2020 Release Update 4 and earlier
Adobe FrameMaker 2022 Release
Adobe Bridge 12.0.3 and earlier versions
Adobe Bridge 13.0.1 and earlier versions
Photoshop 2022 23.5.3 and earlier versions
Photoshop 2023 24.1 and earlier versions
Adobe InDesign ID18.1 and earlier version
Adobe InDesign ID17.4 and earlier version
Adobe Premiere Rush 2.6 and earlier versions
Adobe Animate 2022 22.0.8 and earlier versions
Adobe Animate 2023 23.0.0 and earlier versions
Adobe Substance 3D Stager 1.3.2 and earlier versions

:: Impatto

Accesso a dati riservati (ID)
Esecuzione remota di codice arbitrario (RCE)
Bypass delle funzionalita' di sicurezza (SFB)
Denial of Service (DoS)

:: Soluzioni

Aggiornare i software alle ultime versioni

Adobe After Effects 23.2
Adobe After Effects 22.6.4
Adobe Connect 11.4.6
Adobe Connect 12.2
Adobe FrameMaker FrameMaker 2020 Update 5
Adobe FrameMaker FrameMaker 2022 Update 1
Adobe Bridge 12.0.4
Adobe Bridge 13.0.2
Photoshop 2022 23.5.4
Photoshop 2023 24.1.1
Adobe InDesign ID18.2
Adobe InDesign ID17.4.1
Adobe Premiere Rush 2.7
Adobe Animate 2022 22.0.9
Adobe Animate 2023 23.0.1
Adobe Substance 3D Stager 2.0.0

:: Riferimenti

Adobe Security Bulletins e Advisories
https://helpx.adobe.com/security/security-bulletin.html
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html
https://helpx.adobe.com/security/products/connect/apsb23-05.html
https://helpx.adobe.com/security/products/framemaker/apsb23-06.html
https://helpx.adobe.com/security/products/bridge/apsb23-09.html
https://helpx.adobe.com/security/products/photoshop/apsb23-11.html
https://helpx.adobe.com/security/products/indesign/apsb23-12.html
https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html
https://helpx.adobe.com/security/products/animate/apsb23-15.html
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-16.html

Mitre CVE
I riferimenti CVE sono disponibili nell'advisory originale.

GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----

iGsEAREIACsWIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCY+yg1Q0cY2VydEBnYXJy
Lml0AAoJEMGcTJNlEmBC87UAoNOYVKSr91Lf0Q70YklhBEhwDLZUAKCuCqj/a0+q
WIcAYsh5JiBKg7xYsA==
=JRbH
-----END PGP SIGNATURE-----

Cerca nel blog

alerts.gdaverio.it

Alert GCSA-23020 - Adobe Security Bulletin - Febbraio 2023