Share this article

Improve this guide

Download the Adobe April 2022 Patch Tuesday updates

2 min. read

Published onApril 13, 2022

published onApril 13, 2022

Share this article

Improve this guide

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Key notes

No doubt, many of you are waiting for the Patch Tuesday monthly batch of security updates and we’re here to make it a bit easier for you to find what you’re looking for.

It goes without saying that Microsoft isn’t the only company that has such a rollout on a monthly basis. So, in this article, we’re going to talk about Adobe and some of the patches for their products.

As we’re pretty sure you know by now, we will also include links to thedownload source, so you don’t have to scour the internet to find them.

Acrobat and Reader required the most fixing this month

Acrobat and Reader required the most fixing this month

Last month, Adobe only released three patches addressing six CVEs in Adobe Photoshop, Illustrator, and After Effects.

Pretty light, considering that these last few months really tested major companies in terms of software malfunctions and hacking.

However, April comes with only four updates addressing 70 CVEs in Acrobat and Reader, Photoshop, After Effects, and Adobe Commerce.

AdobeAcrobat and Readerupdates are by far the largest, with no less than62 CVEs being addressed just for the two.

And to answer your next question, yes, the more severe vulnerabilities being fixed are the Critical-Rated Use-After-Free (UAF) and Out-of-Bounds (OOB) Write bugs.

Developers pointed out that these vulnerabilities could actually allow an attacker to execute code on a target system if they can convince a user to open a specially crafted PDF document.

IfPhotoshopis your go-to Adobe software, note that there are 13 CVEs fixed in the patch for the photo editing app.

After Effectspatches for April 2022 address two Critical-rated CVEs that could allow for code execution, with both bugs listed as stack-based buffer overflows.

The patch forAdobe Commercefixes a single, Critical-rated vulnerability, which Adobe rates as a CVSS 9.1, explaining that authentication would be required to exploit this bug.

Admin privileges are also required but, still, if you’re using Commerce, test and deploy this patch as soon as you are able.

Another important aspect is that none of the bugs fixed by Adobe this month are listed as publicly known or under active attack at the time of release.

Have you encountered any other bugs while using Adobe software? Share your experience with us in the comments section below.

More about the topics:patch tuesday

Alexandru Poloboc

Tech Journalist

With an overpowering desire to always get to the bottom of things and uncover the truth, Alex spent most of his time working as a news reporter, anchor, as well as TV and radio entertainment show host.

A certified gadget freak, he always feels the need to surround himself with next-generation electronics.

When he is not working, he splits his free time between making music, gaming, playing football, basketball and taking his dogs on adventures.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Alexandru Poloboc

Tech Journalist

With a desire to always get to the bottom of things and uncover the truth, Alex spent most of his time working as a news reporter.