Download Adobe Reader 9.3.2 / 8.2.2
- Ersteller KIDH
- Erstellt am
KIDH
Grand Admiral Special
Das Standard-Programm zur Darstellung von PDF-Dateien, der Reader von Adobe, hat kürzlich das <a href="http://www.planet3dnow.de/cgi-bin/newspub/viewnews.cgi?id=1271146758">angekündigte Update</a> auf Version 9.3.2 bzw. 8.2.2 erfahren.
Das Update behebt 15, teils kritische, Sicherheitslücken und viele weitere Fehler. Das PDF-Format wird inzwischen erheblich für Angriffe auf User verwendet, indem kompromittierender Schadcode in die Dateien eingefügt wird. Laut Erhebungen des Anti-Viren Software-Herstellers F-Secure im Sommer des letzten Jahres soll das PDF-Format mittlerweile sogar der Träger Nummer 1 sein, wenn es darum geht Schadcode "an den Mann zu bringen".
Der aktuelle Adobe Reader läuft unter Windows ab Windows 2000 SP4, Mac OS X und Linux/UNIX. Eine schlanke Alternative ist <a href="http://www.planet3dnow.de/cgi-bin/newspub/viewnews.cgi?id=1272992711">Foxit Reader</a>.
<center><img src="http://www.planet3dnow.de/vbulletin/attachment.php?attachmentid=16668&stc=1&d=1255618996" alt="" border="1">
Quelle: F-Secure</center>
<b>Hinweis:</b><blockquote>Adobe veröffentlich nur größere Produktaktualisierungen als Setup-Dateien für Windows und OS X. Bei einer Neuinstallation muss so zuerst die Version 9.3 respektive 8.2 installiert und diese dann manuell oder über das Internet aktualisiert werden.</blockquote>
<b>Changelog:</b>
<ul><li>Adobe Reader 9.3.2 bzw. 8.2.2 beinhalten Sicherheitsverbesserungen, die im <a href="http://www.adobe.com/support/security/bulletins/apsb10-09.html" target="b">Security Bulletin APSB10-09</a> beschrieben werden:<ul>
<li>This update resolves a cross-site scripting vulnerability that could lead to code execution (CVE-2010-0190).</li><li>This update resolves a prefix protocol handler vulnerability that could lead to code execution (CVE-2010-0191).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0192).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0193).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0194).</li><li>This update resolves a font handling vulnerability that could lead to code execution (CVE-2010-0195).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0196).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0197).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0198).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0199).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0201).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0202).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0203).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0204).</li><li>This update resolves a heap-based overflow vulnerability that could lead to code execution (CVE-2010-1241).</li></ul></li>
<li>In dieser Version wurden die folgenden Probleme behoben:<ul>
<li>PDF Maker<blockquote>2560751: Word document uploaded on the acrobat.com service runs into a timeout situation</blockquote></li>
<li>Viewer<blockquote>2558546: Loading pdf multiple times in same process caused memory leak in windows browsers</blockquote></li>
<li>Security<blockquote>2468381: Watermark visibility remains unchanged for a policy protected document (with watermark) when using it as background or foreground
2501756: Long term validation data for the OSCP response is not being embedded in the signature at signing time which results in invalid signatures that should be valid.
2518893: PPKlite plugin crashes when validating digital signatures</blockquote></li>
<li>3D<blockquote>2460950: Reader in the browser crashes when viewing some PDF files
2525795: Performance degradation experienced after setting preferences to "Render points as cross-hairs when opening a PDF file</blockquote></li>
<li>Trust Manager<blockquote>2537842: A PDF file trusted for Javascript still shows the Yellow bar and does not execute the javascript
2537849: When a PDF is added as a privileged location in Enhanced Security, Acrobat deletes the entry 'cAlwaysTrustedForJavaScript' under Key-\TrustManager\cTrustedFolders\
2558503: Adding a privileged location host from the Options button on the JavaScript injection Yellow Message Bar populates 1/2 of the privileged location keys it should.
2558529: bDisableTrustedSites and bDisableTrusted folders does not consistently prevent Options button from appearing on Yellow Message Bar for certain workflows.
2553890: Reader removes the “cAlwaysTrustedForJavaScript” value and places it in the “cUnsafeJavaScript” key with the same value when the same exact web site value is place in the Trusted Hosts UI for Enhanced Security</blockquote></li></ul></li>
<li><a href="http://www.adobe.com/de/products/reader/systemreqs" target="b">Systemanforderungen</a></ul>
<b>Download:</b><ul><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044238">Adobe Reader 9.3 [Windows]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180111">Adobe Reader 9.3.2 (Update) [Windows]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044239">Adobe Reader 9.3 [Mac OS X - Intel]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180112">Adobe Reader 9.3.2 (Update) [Mac OS X - Intel]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044240">Adobe Reader 9.3 [Mac OS X - PPC]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180113">Adobe Reader 9.3.2 (Update) [Mac OS X - PPC]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180114">Adobe Reader 9.3.2 [Linux]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180115">Adobe Reader 9.3.2 [Solaris - x86]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044242">Adobe Reader 8.2 [Windows]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181307">Adobe Reader 8.2.2 (Update) [Windows]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044243">Adobe Reader 8.2 [Mac OS X - Intel]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181308">Adobe Reader 8.2.2 (Update) [Mac OS X - Intel]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044244">Adobe Reader 8.2 [Mac OS X - PPC]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181309">Adobe Reader 8.2.2 (Update) [Mac OS X - PPC]</a></li>
<li><a href="http://get.adobe.com/de/reader/otherversions/" target="b">Weitere Versionen</a></li></ul>
<b>Links zum Thema:</b>
<ul><li><a href="http://www.adobe.com/de" target="b">Offizielle Internetpräsenz</a></li><li><a href="https://www.adobe.com/cfusion/mmform/index.cfm?name=wishform&product=70" target="b">Feature Request / Bug Report einsenden</a></li></ul>
Das Update behebt 15, teils kritische, Sicherheitslücken und viele weitere Fehler. Das PDF-Format wird inzwischen erheblich für Angriffe auf User verwendet, indem kompromittierender Schadcode in die Dateien eingefügt wird. Laut Erhebungen des Anti-Viren Software-Herstellers F-Secure im Sommer des letzten Jahres soll das PDF-Format mittlerweile sogar der Träger Nummer 1 sein, wenn es darum geht Schadcode "an den Mann zu bringen".
Der aktuelle Adobe Reader läuft unter Windows ab Windows 2000 SP4, Mac OS X und Linux/UNIX. Eine schlanke Alternative ist <a href="http://www.planet3dnow.de/cgi-bin/newspub/viewnews.cgi?id=1272992711">Foxit Reader</a>.
<center><img src="http://www.planet3dnow.de/vbulletin/attachment.php?attachmentid=16668&stc=1&d=1255618996" alt="" border="1">
Quelle: F-Secure</center>
<b>Hinweis:</b><blockquote>Adobe veröffentlich nur größere Produktaktualisierungen als Setup-Dateien für Windows und OS X. Bei einer Neuinstallation muss so zuerst die Version 9.3 respektive 8.2 installiert und diese dann manuell oder über das Internet aktualisiert werden.</blockquote>
<b>Changelog:</b>
<ul><li>Adobe Reader 9.3.2 bzw. 8.2.2 beinhalten Sicherheitsverbesserungen, die im <a href="http://www.adobe.com/support/security/bulletins/apsb10-09.html" target="b">Security Bulletin APSB10-09</a> beschrieben werden:<ul>
<li>This update resolves a cross-site scripting vulnerability that could lead to code execution (CVE-2010-0190).</li><li>This update resolves a prefix protocol handler vulnerability that could lead to code execution (CVE-2010-0191).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0192).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0193).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0194).</li><li>This update resolves a font handling vulnerability that could lead to code execution (CVE-2010-0195).</li><li>This update resolves a denial of service vulnerability; arbitrary code execution has not been demonstrated, but may be possible (CVE-2010-0196).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0197).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0198).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0199).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0201).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0202).</li><li>This update resolves a buffer overflow vulnerability that could lead to code execution (CVE-2010-0203).</li><li>This update resolves a memory corruption vulnerability that could lead to code execution (CVE-2010-0204).</li><li>This update resolves a heap-based overflow vulnerability that could lead to code execution (CVE-2010-1241).</li></ul></li>
<li>In dieser Version wurden die folgenden Probleme behoben:<ul>
<li>PDF Maker<blockquote>2560751: Word document uploaded on the acrobat.com service runs into a timeout situation</blockquote></li>
<li>Viewer<blockquote>2558546: Loading pdf multiple times in same process caused memory leak in windows browsers</blockquote></li>
<li>Security<blockquote>2468381: Watermark visibility remains unchanged for a policy protected document (with watermark) when using it as background or foreground
2501756: Long term validation data for the OSCP response is not being embedded in the signature at signing time which results in invalid signatures that should be valid.
2518893: PPKlite plugin crashes when validating digital signatures</blockquote></li>
<li>3D<blockquote>2460950: Reader in the browser crashes when viewing some PDF files
2525795: Performance degradation experienced after setting preferences to "Render points as cross-hairs when opening a PDF file</blockquote></li>
<li>Trust Manager<blockquote>2537842: A PDF file trusted for Javascript still shows the Yellow bar and does not execute the javascript
2537849: When a PDF is added as a privileged location in Enhanced Security, Acrobat deletes the entry 'cAlwaysTrustedForJavaScript' under Key-\TrustManager\cTrustedFolders\
2558503: Adding a privileged location host from the Options button on the JavaScript injection Yellow Message Bar populates 1/2 of the privileged location keys it should.
2558529: bDisableTrustedSites and bDisableTrusted folders does not consistently prevent Options button from appearing on Yellow Message Bar for certain workflows.
2553890: Reader removes the “cAlwaysTrustedForJavaScript” value and places it in the “cUnsafeJavaScript” key with the same value when the same exact web site value is place in the Trusted Hosts UI for Enhanced Security</blockquote></li></ul></li>
<li><a href="http://www.adobe.com/de/products/reader/systemreqs" target="b">Systemanforderungen</a></ul>
<b>Download:</b><ul><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044238">Adobe Reader 9.3 [Windows]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180111">Adobe Reader 9.3.2 (Update) [Windows]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044239">Adobe Reader 9.3 [Mac OS X - Intel]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180112">Adobe Reader 9.3.2 (Update) [Mac OS X - Intel]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044240">Adobe Reader 9.3 [Mac OS X - PPC]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180113">Adobe Reader 9.3.2 (Update) [Mac OS X - PPC]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180114">Adobe Reader 9.3.2 [Linux]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504180115">Adobe Reader 9.3.2 [Solaris - x86]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044242">Adobe Reader 8.2 [Windows]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181307">Adobe Reader 8.2.2 (Update) [Windows]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044243">Adobe Reader 8.2 [Mac OS X - Intel]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181308">Adobe Reader 8.2.2 (Update) [Mac OS X - Intel]</a></li>
<li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100113044244">Adobe Reader 8.2 [Mac OS X - PPC]</a></li><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20100504181309">Adobe Reader 8.2.2 (Update) [Mac OS X - PPC]</a></li>
<li><a href="http://get.adobe.com/de/reader/otherversions/" target="b">Weitere Versionen</a></li></ul>
<b>Links zum Thema:</b>
<ul><li><a href="http://www.adobe.com/de" target="b">Offizielle Internetpräsenz</a></li><li><a href="https://www.adobe.com/cfusion/mmform/index.cfm?name=wishform&product=70" target="b">Feature Request / Bug Report einsenden</a></li></ul>
Denniss
Grand Admiral Special
Adobe Acrobat ist meist auf dem gleichen Stand wie der Reader, die Aktualisierungen sind für beide aber unterschiedlich.
Ähnliche Themen
