drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in python-PyMuPDF
| Name: |
Ausführen beliebiger Kommandos in python-PyMuPDF |
|
| ID: |
FEDORA-2021-d8e6f014e5 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 32 |
|
| Datum: |
Fr, 5. März 2021, 23:17 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3407 |
|
| Applikationen: |
python-PyMuPDF |
|
Originalnachricht |
-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2021-d8e6f014e5
2021-03-05 19:23:15.233222
-------------------------------------------------------------------------------
-
Name : python-PyMuPDF
Product : Fedora 32
Version : 1.18.8
Release : 2.fc32
URL : https://github.com/pymupdf/PyMuPDF
Summary : Python binding for MuPDF - a lightweight PDF and XPS viewer
Description :
This is PyMuPDF, a Python binding for MuPDF - a lightweight PDF and XPS
viewer. MuPDF can access files in PDF, XPS, OpenXPS, epub, comic and fiction
book formats, and it is known for its top performance and high rendering
quality. With PyMuPDF you therefore can also access files with extensions
*.pdf, *.xps, *.oxps, *.epub, *.cbz or *.fb2 from your Python scripts.
-------------------------------------------------------------------------------
-
Update Information:
CVE-2021-3407
-------------------------------------------------------------------------------
-
ChangeLog:
* Wed Feb 24 2021 Michael J Gruber <mjg@fedoraproject.org> - 1.18.8-2
- rebuild for mupdf CVE-2021-3407
* Sat Feb 6 2021 Scott Talbert <swt@techie.net> - 1.18.8-1
- Update to new upstream release 1.18.8 (#1924379)
* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> -
1.18.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Sat Jan 9 2021 Scott Talbert <swt@techie.net> - 1.18.6-1
- Update to new upstream release 1.18.6 (#1913766)
* Sun Dec 20 2020 Scott Talbert <swt@techie.net> - 1.18.5-1
- Update to new upstream release 1.18.5 (#1908813)
* Sat Nov 21 2020 Scott Talbert <swt@techie.net> - 1.18.4-1
- Update to new upstream release 1.18.4 (#1900148)
* Tue Nov 10 2020 Scott Talbert <swt@techie.net> - 1.18.3-1
- Update to new upstream release 1.18.3 (#1896141)
* Sun Nov 8 2020 Scott Talbert <swt@techie.net> - 1.18.2-1
- Update to new upstream release 1.18.2 (#1892160)
* Mon Oct 26 2020 Scott Talbert <swt@techie.net> - 1.18.1-1
- Update to new upstream release 1.18.1 (#1889179)
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #1931964 - CVE-2021-3407 mupdf: Double free of object during
linearization
https://bugzilla.redhat.com/show_bug.cgi?id=1931964
-------------------------------------------------------------------------------
-
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-d8e6f014e5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
|
|
|
|
