Bug#983104: RFS: mupdf/1.14.0+ds1-4+deb10u3 [NMU, CVE-2020-16600] -- lightweight PDF viewer
Hi,
I am looking for a sponsor for the package "mupdf" with the upstream fix
for CVE-2020-16600 that affects buster:
* Package name : mupdf
Version : 1.14.0+ds1-4+deb10u3
* URL : http://mupdf.com/
One can download the package with dget using this command:
dget -x
https://mentors.debian.net/debian/pool/main/m/mupdf/mupdf_1.14.0+ds1-4+deb10u3.dsc
Changes since the last upload:
mupdf (1.14.0+ds1-4+deb10u3) buster-security; urgency=high
.
* Non-maintainer upload.
* Avoid a use-after-free in fz_drop_band_writer (CVE-2020-16600)
Regards,
Bastian
Reply to: