Security Updates Available for Adobe Bridge CC | APSB19-53
Bulletin ID Date Published Priority
APSB19-53 November 12, 2019 3

Summary

Adobe has released a security update for Adobe Bridge CC. This update addresses multiple vulnerabilities rated Important that occur when parsing malformed SVG images.  Successful exploitation could lead to information disclosure in the context of current user. 

Affected Versions

Product Version Platform
Adobe Bridge CC 9.1 and earlier versions Windows and macOS

Solution

Adobe categorizes these updates with the following  priority ratings and recommends users update their installation to the newest version via the Creative Cloud desktop app's update mechanism.  For more information, please reference this help page.

Product Version Platform Priority Availability
Adobe Bridge CC 10.0 Windows and macOS 3 Download Page

Vulnerability details

Vulnerability Category Vulnerability Impact Severity CVE Number
Memory corruption Information Disclosure Important CVE-2019-8239
Memory corruption Information Disclosure Important CVE-2019-8240

Acknowledgments

Adobe would like to thank Wen Guang Jiao of Qihoo 360 Core Security for reporting these issues  and for working with Adobe to help protect our customers.