[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#983104: RFS: mupdf/1.14.0+ds1-4+deb10u3 [NMU, CVE-2020-16600] -- lightweight PDF viewer


I am looking for a sponsor for the package "mupdf" with the upstream fix for CVE-2020-16600 that affects buster:

 * Package name    : mupdf
   Version         : 1.14.0+ds1-4+deb10u3
 * URL             : http://mupdf.com/

One can download the package with dget using this command:

dget -x https://mentors.debian.net/debian/pool/main/m/mupdf/mupdf_1.14.0+ds1-4+deb10u3.dsc

Changes since the last upload:

 mupdf (1.14.0+ds1-4+deb10u3) buster-security; urgency=high
   * Non-maintainer upload.
   * Avoid a use-after-free in fz_drop_band_writer (CVE-2020-16600)


Reply to: