Adobe has released an out-of-cycle hotfix for Adobe Acrobat and Reader for Windows and macOS that addresses some important bug fixes as well as an important vulnerability, successful exploitation of which could lead to information disclosure in the context of the current user.
Release date: December 9, 2020
Vulnerability identifier: APSB20-75
Platform: Windows and MacOS
Update or Complete DownloadReader DC and Acrobat DC were updated to version 20.013.20074. Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates.
- Reader DC and other versions are available here: https://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows (https://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows)
- Acrobat DC for Windows is available here: http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows (http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows)
Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.
References
- PSIRT (https://blogs.adobe.com/psirt)
- Release Notes (https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotesDC/continuous/dccontinuousdecember2020ooc.html#dccontinuousdectwentytwentyooc)
- Security Bulletin (https://helpx.adobe.com/security/products/acrobat/apsb20-75.html)
- System Requirements
(http://www.adobe.com/products/reader/tech-specs.html)