Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - Patching and Adobe InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Patching and Adobe

Published: 2009-05-22
Last Updated: 2009-05-22 13:11:28 UTC
by Mark Hofman (Version: 1)
2 comment(s)

 We all remember the beating Adobe received back in February regarding the JBIG2 issue.  The patch was very slow in coming and basically the response was, well, pretty pathetic.   

Now as any incident handler knows one of the most important steps in the incident handling process is the lessons learned.  So it was very refreshing to see Adobe follow this principle and learn from the incident.  They have in the last few days announced what they are doing.  Which you can read here and here.

They'll do a quarterly patch cycle and fit  it in with the second Tuesday of the month.  Based on the response earlier in May it looks like their new processes are working so far.  We'll have to see how it pans out throughout the year. 

Mark H - Shearwater

 

 

 

 

Keywords: Adobe patching
2 comment(s)
Diary Archives