ZDI-25-149: Adobe Acrobat Reader DC AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability

Read Time:17 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-271561.

mingw-libxslt-1.1.43-1.fc42

FEDORA-2025-8603e39722 Packages in this update: mingw-libxslt-1.1.43-1.fc42 Update description: Update to 1.1.43, fixes CVE-2024-55549 and CVE-2025-24855. Read More

March 23, 2025

mingw-libxslt-1.1.43-1.fc40

FEDORA-2025-f7a12118f3 Packages in this update: mingw-libxslt-1.1.43-1.fc40 Update description: Update to 1.1.43, fixes CVE-2024-55549 and CVE-2025-24855. Read More

March 23, 2025

mingw-libxslt-1.1.43-1.fc41

FEDORA-2025-fd62ac3fb1 Packages in this update: mingw-libxslt-1.1.43-1.fc41 Update description: Update to 1.1.43, fixes CVE-2024-55549 and CVE-2025-24855. Read More

March 23, 2025

DSA-5883-1 mercurial – security update

A cross-site scripting vulnerability was discovered in hgweb, the integrated stand-alone web interface of the Mercurial version control system. https://security-tracker.debian.org/tracker/DSA-5883-1...

March 22, 2025

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

A vulnerability has been discovered in Google Chrome, which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code execution...

March 21, 2025

chromium-134.0.6998.117-1.fc41

FEDORA-2025-1afc565e2b Packages in this update: chromium-134.0.6998.117-1.fc41 Update description: Update to 134.0.6998.117 * Critical CVE-2025-2476: Use after free in Lens Read...

March 21, 2025

Friday Squid Blogging: A New Explanation of Squid Camouflage

Arrests in Tap-to-Pay Scheme Powered by Phishing

My Writings Are in the LibGen AI Training Corpus

Albabat Ransomware Evolves to Target Linux and macOS

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

NCSC Releases Post-Quantum Cryptography Timeline

Attackers Use Fake CAPTCHAs to Deploy Lumma Stealer RAT

Active Lumma Stealer Campaign Impacting U.S. SLTTs

BlackLock ransomware: What you need to know

ZDI-25-149: Adobe Acrobat Reader DC AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability

mingw-libxslt-1.1.43-1.fc42

mingw-libxslt-1.1.43-1.fc40

mingw-libxslt-1.1.43-1.fc41

DSA-5883-1 mercurial – security update

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

chromium-134.0.6998.117-1.fc41