Specially crafted PDF files could crash acroread. Attackers could potentially exploit that to execute arbitrary code (CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3956, CVE-2009-3957, CVE-2009-3958, CVE-2009-3959, CVE-2009-4324). Acrobat reader was updated to version 9.3 to fix the security issues. Note: Due to integration issues with the major version update of acroread on SLE10 updates for SLE10 are not ready yet. Fixed packages will be submitted ASAP.
There is no known workaround, please install the update packages.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 11.0 | i586 | acroread | < 9.3-0.1 | acroread-9.3-0.1.i586.rpm |
openSUSE | 11.2 | i586 | acroread | < 9.3-0.1.1 | acroread-9.3-0.1.1.i586.rpm |
openSUSE | 11.1 | i586 | acroread | < 9.3-0.1.1 | acroread-9.3-0.1.1.i586.rpm |
SUSE Linux Enterprise Server | 11 | i586 | acroread-debuginfo | < 9.3-0.1.1 | acroread-debuginfo-9.3-0.1.1.i586.rpm |