Adobe Finally Caves: Free Patches for Photoshop, Illustrator & Flash Professional

By Alexandra Burlacu | May 14, 2012 02:20 PM EDT

Share This Story

  • Print
  • Email

Recent versions of Adobe's high-profile Creative Suite applications, including Adobe Photoshop, Illustrator, and Flash Professional, have security vulnerabilities on both Windows and Mac platforms. While Adobe initially said users must pay for a CS6 upgrade to fix the problems, subsequently, the company said it will issue free patches to fix the bugs in all three applications. The change was announced in a post on the company's official blog.

Follow us

"The team decided to make available patches for Photoshop CS5.x, Illustrator CS5.x, and Flash Professional CS5.x," said an Adobe spokesperson, as cited by MacWorld. "We are still in the process of finalizing the timeline for the patches," added the spokesperson. "We will update the respective security bulletins once patches are available." Adobe's official blog also mentions that users can monitor the latest information on the Adobe Product Security Incident Response Team blog or by subscribing to the RSS feed.

Security Vulnerabilities

According to information published Wednesday on Adobe's security bulletin on the company Web site, security issues compromised Photoshop CS5 and earlier, Illustrator CS5.5 and earlier, and Flash Professional CS5.5 and earlier. The security vulnerabilities in Adobe Photoshop could be exploited by opening malicious TIFF image files, said the company. Adobe characterized the issues as "critical vulnerabilities," which could be exploited to "take control of the affected system."

All of the reported security issues are ranked as Priority 3, which translates into "vulnerabilities in a product that has historically not been a target for attackers." When such cases occur, the company recommends that "administrators install the update at their discretion."

"For users who cannot upgrade...Adobe recommends users follow security best practices and exercise caution when opening files from unknown or untrusted sources," Adobe stated on its Web site.

Rule of Thumb

Adobe's initial stance requiring users to purchase a CS6 upgrade to fix the issues sparked great controversy, and was highly criticized by security experts and users. "The general rule of thumb is that security patches should be issued for all products still considered in-support, said Securosis security analyst Rich Mogull, as cited by MacWorld. "I recently did some research and found no cases where an out-of-support product was issued security fixes..." Both Adobe CS4 and CS5 are still supported, therefore the company has no excuse not to offer security patches, indicated Mogull.

Adobe launched CS5 in April 2010, and CS5.5 a year later, in April 2011. Photoshop CS6 Extended costs $399 to upgrade, Photoshop costs $199, Illustrator, $249, and Flash Professional, $99. Meanwhile, CS6 Design and Web Premium, the suite which includes all three affected software packages, comes with a $375 price tag. The news of security issues come after a busy week for Adobe, as the company had massive software releases, including its Creative Suite 6 and its Creative Cloud subscription-based products and services.

(reported by Alexandra Burlacu, edited by Dave Clark)

 

Get the Most Popular Mobile&Apps Stories in a Weekly Newsletter

© 2014 Mobile & Apps All rights reserved. Do not reproduce without permission.

Featured Video : Intel Pocket Avatars

Join Our Conversation

Smartphones
Purported Samsung Galaxy Note 4 'Side Touch' camera sensorSamsung Galaxy Note 4 camera specs & features detailed, include Side Touch and four selfie modes
Apple to launch 128GB iPhone, ditch 32GB model?
Samsung, Barnes & Noble officially launch the Galaxy Tab 4 Nook tablet
Verizon to launch its own app store for Android to compete with Google Play
Tablet / Laptop / PC
Dell Venue 7 and Venue 8Dell unveils Venue 7 and Venue 8 Android 4.3 Jelly Bean tablets
Retina iPad Mini facing delays, may not launch until early next year
Refurbished 128GB iPad with Retina Display now available on the Apple Online Store
Samsung Galaxy Note 10.1 – 2014 Edition: Pricing and availability now official
Gadgets
Amazon LogoAmazon reportedly to launch ‘Firetube’ set-top box before 2013 holidays
Samsung Galaxy Note 3 and Galaxy Gear India launch: Pricing and availability
Samsung Galaxy Gear Android smartwatch now up for pre-order in Canada
Samsung Galaxy Gear 2 reportedly in the works already, may debut at CES or MWC 2014
OS / Software
HTC LogoHTC reportedly considering Android/Windows Phone dual-booting smartphone as Microsoft pushes for deeper Windows mobile integration
iOS 7 Chrome Incognito mode leaks private searches due to bug
Sprint HTC One Android 4.3 Jelly Bean already rolling out, AT&T, T-Mobile & Verizon to follow
Microsoft Windows 8.1 now available for pre-order
Internet / Social Media
Google DowntimeGoogle blacks out for two minutes, causes 40 percent drop in world’s Internet traffic
Xbox Music web player is live and ready for Xbox Music Pass subscribers
Facebook Android app collected phone numbers even if users never logged in
Firefox 22 brings support for web video calls, 3D gaming, and Unreal Engine 3
What's App
Vine update brings new camera experienceVine gets major update, lets you upload previously-shot videos & more (VIDEO)
BlackBerry Messenger (BBM) finally hits Windows Phone – Available as a free download now
Instagram releases Bolt ephemeral messaging app in select markets to challenge Snapchat
PayPal for iOS update brings loyalty card support, other features and enhancements
Copyright © 2014 Mobile & Apps All rights reserved. mobilenapps
Real Time Analytics