Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted mupdf 1.9a+ds1-4+deb9u5 (source amd64) into oldstable
Date: Sat, 25 Jul 2020 14:10:17 +0000
Signed by: Thorsten Alteholz <alteholz@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 25 Jul 2020 11:03:02 +0200
Source: mupdf
Binary: libmupdf-dev mupdf mupdf-tools
Architecture: source amd64
Version: 1.9a+ds1-4+deb9u5
Distribution: stretch-security
Urgency: high
Maintainer: Kan-Ru Chen (陳侃如) <koster@debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 libmupdf-dev - development files for the MuPDF viewer
 mupdf      - lightweight PDF viewer
 mupdf-tools - command line tools for the MuPDF viewer
Changes:
 mupdf (1.9a+ds1-4+deb9u5) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2019-13290
     heap-based buffer overflow which allows remote attackers to execute
     arbitrary code via a crafted PDF file
   * CVE-2019-6130
     segmentiation fault due to page-number mishandling
   * CVE-2018-18662
     out-of-bounds read related to glyphs
   * CVE-2018-16648
     denial of service via a crafted pdf caused by a segmentation fault
     due to array-index underflow
   * CVE-2018-16647
     denial of service via a crafted pdf caused by a segmentation fault
     while writing data
Checksums-Sha1:
 9f0c8674c25e7ccd411b8d8c5aab2efe9399a598 2340 mupdf_1.9a+ds1-4+deb9u5.dsc
 2699c33ddc8f33819cd0791f3762a3a268873286 13325139 mupdf_1.9a+ds1.orig.tar.gz
 d6bffed16644a907316a371226a50a901389a9f4 38956 mupdf_1.9a+ds1-4+deb9u5.debian.tar.xz
 8fdbd6313b84c7f839d0228f0379e68745693540 7301376 libmupdf-dev_1.9a+ds1-4+deb9u5_amd64.deb
 47677faaad68ab305b389a3efdb1cf96e50548da 2137054 mupdf-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 51f9e517050d12748d98e56390f135341770d40e 2392454 mupdf-tools-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 145e0bdccd27936fec812418e5d674a21df7ee49 6913370 mupdf-tools_1.9a+ds1-4+deb9u5_amd64.deb
 27450034afc39c8c21c517b73e2429269d304425 9116 mupdf_1.9a+ds1-4+deb9u5_amd64.buildinfo
 bf61e302bbe3d79d51bcb8419fd8a8339add346e 6862676 mupdf_1.9a+ds1-4+deb9u5_amd64.deb
Checksums-Sha256:
 83652dba5143f1d112a0457bef14644265891f7cf306471481b47c60730800d9 2340 mupdf_1.9a+ds1-4+deb9u5.dsc
 1b5d6126472f99ae2c99f1b474169b752764d63a90d3dd6e6a6f8fac8cdd0b75 13325139 mupdf_1.9a+ds1.orig.tar.gz
 aaa8f5f4fbdec2f7341d5e6f8371144653244eaa18354fa5ec78f3679472bb9c 38956 mupdf_1.9a+ds1-4+deb9u5.debian.tar.xz
 e36b5d580845584488ff2b50ea0ebf1f0858281567c956dc327c3ce59ef27ff6 7301376 libmupdf-dev_1.9a+ds1-4+deb9u5_amd64.deb
 88b2f7c8914bba8c224d4298a2b24231f8d0ebbb85ed8ddf2c2fa0ce49360f45 2137054 mupdf-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 fb93ccd4cd27f683cfbf85c5be4aad0f777677feacd425775edc3b510ee678fe 2392454 mupdf-tools-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 3688934ca4c926595b956855e399e0f744cdf707cb5f11dc2e224350a7273f4b 6913370 mupdf-tools_1.9a+ds1-4+deb9u5_amd64.deb
 11d162ebe005edab8b6124f1fa8fce8e3af01f0724ca3cd8767b1ec22a8a9651 9116 mupdf_1.9a+ds1-4+deb9u5_amd64.buildinfo
 0d9ce7b6f94f9f62f0409b1eb0cca1de3b8126faedb071985844329444d82b1c 6862676 mupdf_1.9a+ds1-4+deb9u5_amd64.deb
Files:
 9e39806a958b4a34a57fff95eb222037 2340 text optional mupdf_1.9a+ds1-4+deb9u5.dsc
 62e41e176d501171476cf4f6a03d8306 13325139 text optional mupdf_1.9a+ds1.orig.tar.gz
 47741a480fe4aa85ef404d28d3fc617e 38956 text optional mupdf_1.9a+ds1-4+deb9u5.debian.tar.xz
 d071d143e50af61f92bbf650c224b445 7301376 libdevel optional libmupdf-dev_1.9a+ds1-4+deb9u5_amd64.deb
 8c2239afbe5d0208b18a81aeb3771e5a 2137054 debug extra mupdf-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 d0af6bc885db100438adb2d47329ac92 2392454 debug extra mupdf-tools-dbgsym_1.9a+ds1-4+deb9u5_amd64.deb
 1c8f0abc4a7545a6d949f1279e1c7bf5 6913370 text optional mupdf-tools_1.9a+ds1-4+deb9u5_amd64.deb
 7cbd19583e7d78c61f8e4defab9f07f0 9116 text optional mupdf_1.9a+ds1-4+deb9u5_amd64.buildinfo
 c35790abacdf9cdc9da7dde1415ce8d9 6862676 text optional mupdf_1.9a+ds1-4+deb9u5_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=/rQp
-----END PGP SIGNATURE-----
News for package mupdf
