Mehrere Probleme in MuPDF
ID: | DSA-3797-1 |
Distribution: | Debian |
Plattformen: | Debian sid, Debian jessie, Debian stretch |
Datum: | Mi, 1. März 2017, 07:15 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5991
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8674 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5896 |
Applikationen: | MuPDF |
Originalnachricht |
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3797-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff February 28, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : mupdf CVE ID : CVE-2016-8674 CVE-2017-5896 CVE-2017-5991 Multiple vulnerabilities have been found in the PDF viewer MuPDF, which may result in denial of service or the execution of arbitrary code if a malformed PDF file is opened. For the stable distribution (jessie), these problems have been fixed in version 1.5-1+deb8u2. For the testing distribution (stretch), these problems have been fixed in version 1.9a+ds1-4. For the unstable distribution (sid), these problems have been fixed in version 1.9a+ds1-4. We recommend that you upgrade your mupdf packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAli18LMACgkQEMKTtsN8 TjbKWA//VFQvwbSYl5eDRgi27S9gVfeYAUQLPPXsp1/FUDSZajNZCOWfqHlFw/ae nv6gXIrtYZ4/NUpSNddlSFj6q5nMbt7ajBP8XpH+1cZtOBzawtGk8XCEe0zMROxb XE7Ttzch+DrZ6sB2ObJ3PS4M0D6Z7T65kUmIezIuLThZU3vu7XZ8EOkaf4ILVPF/ I94/acIdRO1TP0kTxAwSYJhm1KxkuWe1EH4N7uyCuQ34fq2mdpKovsZKNygnUgd6 kjJgc/zKSRabqfmF53gXMUd9Sni/oD+akIMotFznjm+yM4XPf07DxOVZtGvzM3Zw 6bZ+EmYCGivay90Zvi6DzeWlOM38tjiVL+aOtV0esMrU5lpxBvQAqPhZcCdf2FgE e3tcHI6wDK9+V331f/8LwN6ZKpo1aZ+yex9hgeTj8Nrj2KyFUl2JeKWtdmYxKppe DwHcC1ulaDqHJ1TOGGbvAAR47wRC7qtvu5LPdPrvCd3NpkNyqiO7f4y9EuciQhxe mdMVI4xnIYOWEYPaoPaSi31RZ+1GGLhbrk4+M5baFDHAtsfJaj3Y9Hi8zoxjXA1n 5Y4zUHVosyew+YF9zZ7iYtwyNGqIvHcL6ONW6ccPPwqm+KwhjZT4Wb/SC6G1cdQX tCTACLQ7yP//ijvyUgjs0DGwUNYYc94Nll7TiPfPaUqUBqwlJ0w= =kdvT -----END PGP SIGNATURE----- |