Adobe has released a security update for Adobe Photoshop CS6 (13.0) for Windows and Mac OS X to address two security vulnerabilities that, if exploited, could let an attacker take over a system.
Both flaws (CVE-2012-4170 and CVE-2012-0275) stem from buffer overflow vulnerabilities that could lead to code execution. At the time of publishing, Adobe said they have not seen any exploits in the wild related to the issues addressed in this security fix.
Adobe said that Photoshop CS5.1 (12.1.1) and Photoshop CS5 (12.0.5) and earlier versions for Windows and Mac OS are not affected by these vulnerabilities, and no update is required for Adobe Photoshop CS5.1 (12.1.1) and Adobe Photoshop CS5 (12.0.5) and earlier versions for Windows and Mac OS.
Adobe recommends users of Adobe Photoshop CS6 (13.0) update their products by following the instructions provided in the tech note located here.
In addition to the security fixes, the update fixes a number of functional, crashing, and performance issues.