Adobe Acrobat Reader is vulnerable to remote code execution, Denial of Service, and cross-site scripting attacks.
|Package||app-text/acroread on all architectures|
|Affected versions||< 7.0.9|
|Unaffected versions||>= 7.0.9|
Adobe Acrobat Reader is a PDF reader released by Adobe.
Adobe Acrobat Reader in stand-alone mode is vulnerable to remote code execution via heap corruption when loading a specially crafted PDF file.
There is no known workaround at this time.
All Adobe Acrobat Reader users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-text/acroread-7.0.9"
January 22, 2007
January 22, 2007: 01