[Security] Adobe Reader
NoOp
glgxg at sbcglobal.net
Sun May 24 04:00:17 UTC 2009
For those of you that use Adobe Reader 9.1, be aware that there is a
critical security issue in 9.1, see:
http://www.adobe.com/support/security/bulletins/apsb09-06.html
A 9.1.1 release has been available since May 12, but has not yet been
updated in the repositories, see:
https://bugs.launchpad.net/ubuntu/+source/acroread/+bug/371954
[remote code execution vuln in adobe reader - disable javascript by default]
For those that don't wish to continue waiting for a repository update,
you can download the .bin file from here:
<http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Unix>
Make the file executable and then:
$ sudo ./AdbeRdr9.1.1-1_i486linux_enu.bin
Extracting files, please wait. (This may take a while depending on the
configuration of your machine)
This installation requires 144 MB of free disk space.
Enter installation directory for Adobe Reader 9.1.1 [/opt]
Previous installation of Adobe Reader found in "/opt":
"/opt/Adobe/Reader9/Reader/intellinux/bin/acroread"
Continue installation? [y] y
/opt
Installing platform independent files ... Done
Installing platform dependent files ... Done
Setting up libraries ... Done
Setting up desktop and menu icons ... Done
Setting up the browser plugin ... Done
Modify sudo ./AdbeRdr9.1.1-1_i486linux_enu.bin for your appropriate
language. The above example is for English, German would be
AdbeRdr9.1.1-1_i486linux_deu.bin etc.
The above will install 9.1.1 over your 9.1 using the same folders as
your exisiting install.
If you wish to continue to wait for the repository update, then turn off
javascript until then:
1. Adobe Reader.
2. Select Edit>Preferences
3. Select the JavaScript Category
4. Uncheck the ‘Enable Acrobat JavaScript’ option
5. Click OK
More information about the ubuntu-users
mailing list