Emergency patches for Adobe Reader scheduled
The recent zero-day vulnerabilities in Adobe's Reader and Acrobat XI, which became known about a few days ago, now have fixes and updates scheduled. According to a weekend blog post from Adobe, the issues, CVE-2013-0640 and CVE-2013-0641, will be fixed with an update "during the week of February 18, 2013".
Adobe doesn't give a more precise date, but the updated security advisory notes that the fixes will be for Reader and Acrobat XI, X, and 9.53 and earlier 9.x versions on Windows and Mac, and Reader 9.5.3 and earlier 9.x versions on Linux. It also continues to offer Adobe's official advice, that users of Adobe Reader and Acrobat XI for Windows, at least, can protect themselves by enabling Protected View. For other Reader and Acrobat users, it appears that the only option for security is to use an alternative PDF viewer, at least until the updates arrive.