Bulletin ID
Security Updates Available for Adobe Bridge CC | APSB19-37
|
Date Published |
Priority |
---|---|---|
APSB19-37 |
July 09, 2019 |
3 |
Summary
Adobe has released a security update for Adobe Bridge CC. This update addresses a vulnerability rated important that occurs when parsing malformed SVG images. This can result in an out-of-bounds memory read which leads to information (memory address) disclosure in the context of current user.
Affected Versions
Product |
Version |
Platform |
---|---|---|
Adobe Bridge CC |
9.0.2 and earlier versions |
Windows and macOS |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the latest version:
Product |
Version |
Platform |
Priority |
Availability |
---|---|---|---|---|
Adobe Bridge CC |
9.1 |
Windows and macOS |
3 |
Vulnerability details
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Number |
---|---|---|---|
Out-of-Bounds Read |
Information Disclosure |
Important |
CVE-2019-7963 |
Acknowledgments
Adobe would like to thank Francis Provencher (via Trend Micro’s Zero Day Initiative) for reporting this issue and for working with Adobe to help protect our customers.