Bulletin ID
Last updated on
May 16, 2021
|
Also applies to Digital Editions
Security Updates Available for Adobe Bridge CC | APSB19-37
|
|
Date Published |
Priority |
|---|---|---|
|
APSB19-37 |
July 09, 2019 |
3 |
Summary
Adobe has released a security update for Adobe Bridge CC. This update addresses a vulnerability rated important that occurs when parsing malformed SVG images. This can result in an out-of-bounds memory read which leads to information (memory address) disclosure in the context of current user.
Affected Versions
|
Product |
Version |
Platform |
|---|---|---|
|
Adobe Bridge CC |
9.0.2 and earlier versions |
Windows and macOS |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the latest version:
|
Product |
Version |
Platform |
Priority |
Availability |
|---|---|---|---|---|
|
Adobe Bridge CC |
9.1 |
Windows and macOS |
3 |
Vulnerability details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Number |
|---|---|---|---|
|
Out-of-Bounds Read |
Information Disclosure |
Important |
CVE-2019-7963 |
Acknowledgments
Adobe would like to thank Francis Provencher (via Trend Micro’s Zero Day Initiative) for reporting this issue and for working with Adobe to help protect our customers.
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online
Adobe MAX
The Creativity Conference
Oct 14–16 Miami Beach and online