Adobe Family January 2024 Routine Security Update Advisory

Overview

 

Adobe(https://adobe.com) has released a security update that fixes vulnerabilities in its products. Users of affected systems are advised to update to the latest version.

 

Affected Products

 

Adobe Substance 3D Stager 2.1.3 and earlier versions

 

Resolved Vulnerabilities

 

Memory leak due to an out-of-bounds read in memory in Adobe Substance 3D Stager (CVE-2024-20710)

Memory leak vulnerability due to an out-of-bounds read in memory in Adobe Substance 3D Stager (CVE-2024-20711)

Memory leak vulnerability due to an out-of-bounds read in memory in Adobe Substance 3D Stager (CVE-2024-20712)

Arbitrary code execution vulnerability due to lack of input validation in Adobe Substance 3D Stager (CVE-2024-20713)

Memory leak vulnerability due to an out-of-bounds read of memory in Adobe Substance 3D Stager (CVE-2024-20714)

Memory leak vulnerability due to an out-of-bounds read of memory in Adobe Substance 3D Stager (CVE-2024-20715)

 

Vulnerability Patches

 

The following product-specific vulnerability patches were made available in the 01/09/2024 update

 

Referenced Sites

 

Security Bulletins and Advisories

https://helpx.adobe.com/security.html/security/security-bulletin.ug.html

APSB24-06 : Security update available for Adobe Substance 3D Stager

https://helpx.adobe.com/security/products/substance3d_stager/apsb24-06.html