Adobe Introduces the Paid Security Fix

Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

Adobe Introduces the Paid Security Fix 392

Posted by timothy on Thursday May 10, 2012 @05:41PM from the sure-would-be-a-shame-if-somethin'-was-ta-happen dept.

Nimey writes "Adobe has posted a security bulletin for Photoshop CS5 for Windows and OSX. It seems there is a critical security hole that will allow attackers to execute arbitrary code in the context of the user running the affected application. Adobe's fix? You need to pay to upgrade to Photoshop CS6. For users who cannot upgrade to Adobe Photoshop CS6, Adobe recommends users follow security best practices and exercise caution when opening files from unknown or untrusted sources."

This discussion has been archived. No new comments can be posted.

Adobe Introduces the Paid Security Fix

Search 392 Comments Log In/Create an Account

Comments Filter:

Ugh (Score:3, Informative)

by bonch ( 38532 ) * writes: on Thursday May 10, 2012 @05:46PM (#39959747)

If this was a years-old version, I'd understand, but CS5 was the latest version until literally days ago!

Share
twitter facebook
Re:Call it the Microsoft method (Score:5, Informative)

by Anonymous Coward writes: on Thursday May 10, 2012 @05:46PM (#39959759)

Sorry but Microsoft does the best at offering security fixes at no cost. I can't think of another company that does it better than Microsoft.

Parent Share
twitter facebook
Re:Ugh (Score:0, Informative)

by bonch ( 38532 ) * writes: on Thursday May 10, 2012 @06:06PM (#39959987)

That's incorrect. Photoshop, Illustrator, Fireworks, and Contribute weren't updated in CS5.5. See here [prodesigntools.com].

Parent Share
twitter facebook
Re:Call it the Microsoft method (Score:5, Informative)

by Galestar ( 1473827 ) writes: on Thursday May 10, 2012 @06:11PM (#39960047) Homepage

I'm sorry, but even "Non-Genuine" copies of Windows still get security fixes. There is no comparison here.

Windows: Pirate our software, we'll still give you security fixes (although we might put a watermark asking you to stop pirating it)
Adobe: Buy our software, but you only get security fixes if you give us even more money.

Hell, MS gives security fixes even to XP until 2014 (13 years after its release). CS5 is less than 2 years old.

Parent Share
twitter facebook
They knew over six months ago! (Score:4, Informative)

by greenreaper ( 205818 ) writes: on Thursday May 10, 2012 @06:21PM (#39960151) Homepage Journal

This is especially egregious since according to the researcher's announcement [protekresearchlab.com], Adobe has been sitting on this bug since last September. Users of CS5 should demand a patch.

Share
twitter facebook
Re:A non story (Score:4, Informative)

by greenreaper ( 205818 ) writes: on Thursday May 10, 2012 @06:24PM (#39960177) Homepage Journal

Here's the problem with that - they were told about the issue in September 2011 [protekresearchlab.com]. They didn't address it then, but apparently decided to wait until well after the public advisory.

Parent Share
twitter facebook
Re:Call it the Microsoft method (Score:3, Informative)

by Koim-Do ( 552500 ) writes: on Thursday May 10, 2012 @06:43PM (#39960365)

Actually, if by "RHEL from 2008" you mean RHEL5 then you were quite wrong. Apparently, redhat promises security updates at last until sometime in 2017:
https://access.redhat.com/support/policy/updates/errata/ [redhat.com]

Parent Share
twitter facebook
Re:Slight correction (Score:4, Informative)

by Anonymous Coward writes: on Thursday May 10, 2012 @06:56PM (#39960477)

And it has only been released for purchase for a few DAYS. It was released this week (the week of the 7th).
Almost makes me wonder if they new about the problem and only acknowledged it now so they didn't have to patch it for free. captcha revenues

Parent Share
twitter facebook
Re:Call it the Microsoft method (Score:3, Informative)

by rayharris ( 1571543 ) writes: on Thursday May 10, 2012 @07:01PM (#39960525)

This is not support. This is fixing something that was broke in the first place.

Parent Share
twitter facebook
Re:Call it the Microsoft method (Score:4, Informative)

by dudpixel ( 1429789 ) writes: on Thursday May 10, 2012 @11:49PM (#39962927)

So are you offering to pay $10K or more for this hypothetical near-perfect software?
or will you pay $200 and accept that there may be bugs (and that the company will offer fixes for major security issues for x years) ?
It all comes down to economics at some point.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Adobe Introduces the Paid Security Fix 392

Adobe Introduces the Paid Security Fix More Login

Adobe Introduces the Paid Security Fix

Ugh (Score:3, Informative)

Re:Call it the Microsoft method (Score:5, Informative)

Re:Ugh (Score:0, Informative)

Re:Call it the Microsoft method (Score:5, Informative)

They knew over six months ago! (Score:4, Informative)

Re:A non story (Score:4, Informative)

Re:Call it the Microsoft method (Score:3, Informative)

Re:Slight correction (Score:4, Informative)

Re:Call it the Microsoft method (Score:3, Informative)

Re:Call it the Microsoft method (Score:4, Informative)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot