releases Security updates (March 12, 2019)

Ref# Adobe | Date: Apr 23rd 2019

Description

Adobe has released updates for Adobe Photoshop CC and Adobe Digital Editions on March 12, 2019. These updates resolve a critical vulnerability in Photoshop CC 19.1.7 and earlier 19.x versions as well as 20.2 and earlier 20.x versions. If this vulnerability is successfully exploited, it could lead to information disclosure of the current user.

Listed below are the affected product versions:

Photoshop CC affected version (19.1.7 and earlier) on the Windows and macOS platforms.

Photoshop CC affected version (20.0.2 and earlier) on the Windows and macOS platforms.

 

Listed below are the recommended up-to-date solutions:

Photoshop CC, updated version (19.1.8) for Windows and macOS platforms.

Photoshop CC, updated version (20.0.4) for Windows and macOS platforms.

 

Listed below is the vulnerability details:

Heap corruption, vulnerability impact (arbitrary code execution) with severity listed as Critical, CVE number (CVE-2019-7094).

 

For more information on the list of updates you can follow this url:

https://helpx.adobe.com/security/products/photoshop/apsb19-15.html

 

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

  • Adobe release security updates (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/03/12/Adobe-Releases-Security-Updates