Release date: December 13, 2016
Vulnerability identifier: APSB16-45
CVE numbers: CVE-2016-7888, CVE-2016-7889
Platform: Windows, Macintosh and Android
|Adobe Digital Editions||4.5.2 and earlier versions||Windows, Macintosh and Android
Adobe categorizes this update with the following priority ratings and recommends users update their installation to the newest version:
|Product||Updated version||Platform||Priority rating||Availability|
|Adobe Digital Editions||4.5.3||Macintosh||3||Download Page|
Customers using Adobe Digital Editions 4.5.2 can download the update from the Adobe Digital Editions download page, or utilize the product’s update mechanism when prompted.
For more information, please reference the release notes.
- This update resolves a vulnerability that could lead to a memory address leak (CVE-2016-7888).
- This update resolves an issue associated with parsing crafted XML entities that could lead to information disclosure (CVE-2016-7889).