mupdf vulnerable to CVE-2021-3407

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

mupdf vulnerable to CVE-2021-3407

From:	Léo Le Bouter
Subject:	mupdf vulnerable to CVE-2021-3407
Date:	Wed, 03 Mar 2021 21:53:11 +0100
User-agent:	Evolution 3.34.2

CVE-2021-3407   24.02.21 00:15
A flaw was found in mupdf 1.18.0. Double free of object during
linearization may lead to memory corruption and other potential
consequences.

mupdf has made no release yet, so you need to cherry-pick the commit: 
https://git.ghostscript.com/?p=mupdf.git;a=log;h=cee7cefc610d42fd383b3c80c12cbc675443176a

signature.asc
Description: This is a digitally signed message part

[Prev in Thread]

Current Thread

[Next in Thread]

mupdf vulnerable to CVE-2021-3407, Léo Le Bouter <=
- Re: mupdf vulnerable to CVE-2021-3407, Kei, 2021/03/04

Prev by Date: Re: Getting rid of the mandb profile hook?
Next by Date: Re: Release on April 18th?
Previous by thread: libcaca vulnerable to CVE-2021-3410
Next by thread: Re: mupdf vulnerable to CVE-2021-3407
Index(es):
- Date
- Thread