Updated mupdf packages fix security vulnerability

2017-12-3115:00:06

Gentoo Foundation

advisories.mageia.org

0.025 Low

EPSS

Percentile

90.0%

JSON

Multiple vulnerabilities have been found in the PDF viewer MuPDF, which may result in denial of service or the execution of arbitrary code if a malformed PDF file is opened (CVE-2016-8674, CVE-2017-5896, CVE-2017-5991) Terry Chia and Jeremy Heng discovered an integer overflow that can cause arbitrary code execution via a crafted .pdf file (CVE-2017-15587).

OSVersionArchitecturePackageVersionFilename
Mageia5noarchmupdf< 1.5-4.5mupdf-1.5-4.5.mga5

OS	Version	Architecture	Package	Version	Filename
Mageia	5	noarch	mupdf	< 1.5-4.5	mupdf-1.5-4.5.mga5

References

bugs.mageia.org/show_bug.cgi?id=20310

www.debian.org/security/2017/dsa-3797

www.debian.org/security/2017/dsa-4006

0.025 Low

EPSS

Percentile

90.0%

JSON

Related for MGASA-2017-0479