K 10
svn:author
V 3
hrs
K 8
svn:date
V 27
2009-05-13T08:19:25.000000Z
K 7
svn:log
V 878
Update to 8.1.5.  Two critical vulnerabilities have been fixed:

- CVE-2009-1492

 The getAnnots Doc method in the JavaScript API in Adobe Reader
 and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote
 attackers to cause a denial of service (memory corruption) or
 execute arbitrary code via a PDF file that contains an
 annotation, and has an OpenAction entry with JavaScript code
 that calls this method with crafted integer arguments.

- CVE-2009-1493

 The customDictionaryOpen spell method in the JavaScript API in
 Adobe Reader 8.1.4 and 9.1 on Linux allows remote attackers to
 cause a denial of service (memory corruption) or execute
 arbitrary code via a PDF file that triggers a call to this
 method with a long string in the second argument.

Security:	CVE-2009-1492
Security:	CVE-2009-1493
Security:	http://www.adobe.com/support/security/bulletins/apsb09-06.html

END