sledp3-acroread_ja

Security update for acroread_ja

This update of acroread fixes two critical vulnerabilities. The first one in referenced by CVE-2010-3654 and exists in the integrated authplay component that may allow remote attackers to take control over a victims system. (CVE-2010-3654: CVSS v2 Base Score: 6.8 (critical) (AV:N/AC:M/Au:N/C:P/I:P/A:P): Buffer Errors (CWE-119)) The other issue was disclosed on full-disclosure to demonstrate a denial of service attack, an extend of this attack to execute arbitrary code could be possible. (CVE-2010-4091: CVSS v2 Base Score: 6.8 (critical) (AV:N/AC:M/Au:N/C:P/I:P/A:P): Buffer Errors (CWE-119)) Security Issue references: * CVE-2010-3654 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3654> * CVE-2010-4091 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4091> security acroread_ja i586 99b2c3f6758309de8e72ef7d9b61119e031a7f6c