- Ready for another batch of Patch Tuesday updates?
- Adobe has just finished releasing a fresh set today.
- Critical-rated code execution bugs were addressed.
- You can find the direct download links in this article.
We know that many of you are eagerly waiting for the Patch Tuesday monthly batch of updates and we’re here to make it easier for you to find them
And, as you surely know, Microsoft isn’t the only company that releases software during this day. So, in this article, we’re going to talk about Adobe and some of the patches for their products.
As always, we will include links to the download source, so you don’t have to scout the internet to find them.
Adobe addresses multiple critical-rated bugs this month
Thus, for the month of February 2022, Adobe released five bulletins addressing 17 CVEs in Adobe Illustrator, Creative Cloud Desktop, After Effects, Photoshop, and Rush.
We’ll start with the update for Illustrator, which fixes a total of 13 bugs, the most severe of which could allow arbitrary code execution through either a buffer overflow or an Out-Of-Bounds (OOB) Write.
Moving on to the patch for Creative Cloud Desktop, you might want to know that it also fixes a single, critical-rated code execution bug.
And, since we were on the topic of critical-rated code execution bugs, let’s continue the list with the fix for Adobe’s After Effects.
The software released today addresses an OOB write bug that exists within the parsing of 3GP files. This issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated structure.
We entered the home stretch, and we’re looking at the final critical-rated patch from Adobe this month, which fixes a buffer overflow in Photoshop that could allow code execution.
The only Moderate-rated patch this month is the update for Premiere Rush, one that fixes a bug that exists within the parsing of JPEG images.
If you were wondering how this issue came to be, it results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer.
Also worth noting is that none of the bugs fixed by Adobe this month are listed as publicly known or under active attack at the time of release.