Adobe scrambled to deliver urgent patches for bugs in Photoshop, Bridge, Prelude

A dozen critical Adobe vulnerabilities patched in unconventional security update

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Adobehas broken from its regular update schedule to deliver emergency patches for critical security vulnerabilities discovered in popular softwarePhotoshop, Prelude and Bridge.

The firm traditionally issues patches for its various products on a monthly basis, but the latest raft of fixes arrived just one week after the conventional security update.

Thirteenvulnerabilitieswere resolved in all, twelve of which were classified as critical, hence the need for swift action on the part of Adobe.

Mat Powell, researcher with the Trend Micro Zero Day Initiative (ZDI), was said to be responsible for identifying and disclosing the issues.

Adobe security update

The update addressed five critical bugs present in AdobePhotoshopCC 2019 (versions 20.0.9 and earlier) and Photoshop 2020 (versions 21.2 and earlier) forWindows.

Two are described as out-of-bounds read flaws and the remaining three are classed as out-of-bounds write vulnerabilities - all five of which could be exploited by hackers to execute code on the target machine.

Asset management software Adobe Bridge (versions 10.1.1 and earlier) was updated to rectify one out-of-bounds read and two out-of-bounds write flaws. In this case, both Windows and macOS versions were affected.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Adobe Prelude, meanwhile, was found to suffer four similar vulnerabilities, which were also resolved in the unexpected round of patches.

The previous raft of security updates, delivered a week prior, addressed issues in various Adobe Creative Cloud, Media Encoder, ColdFusion and Download Manager.

Users of relevant Adobe software are advised to install the latest updates as soon as possible, to mitigate the risk of compromise.

ViaZDNet

Joel Khalili is the News and Features Editor at TechRadar Pro, covering cybersecurity, data privacy, cloud, AI, blockchain, internet infrastructure, 5G, data storage and computing. He’s responsible for curating our news content, as well as commissioning and producing features on the technologies that are transforming the way the world does business.

7 myths about email security everyone should stop believing

Best Usenet client of 2024

This super-cheap HP Victus 15 gaming laptop just dropped to its lowest price yet