SUSE-SA:2009:014 -- SUSE acroread remote code executionID: oval:org.secpod.oval:def:400067 | Date: (C)2012-01-31 (M)2021-09-11 |
Class: PATCH | Family: unix |
Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. We cannot upgrade to newer versions due to library dependencies. We strongly encourage users of acroread on NLD9 to uninstall the package and to use an alternative, open source pdf viewer instead. We"re currently evaluating the possibility of disabling acroread on NLD9 via online update.
Platform: |
openSUSE 10.3 |
openSUSE 11.1 |
openSUSE 11.0 |