Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <>
Subject: Accepted mupdf 1.21.1+ds2-1+deb12u1 (source) into oldstable-security
Date: Sat, 18 Apr 2026 15:04:18 +0000
Signed by: Salvatore Bonaccorso <carnil@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 17 Apr 2026 16:03:43 +0200
Source: mupdf
Architecture: source
Version: 1.21.1+ds2-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Kan-Ru Chen (陳侃如) <koster@debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 1133189
Changes:
 mupdf (1.21.1+ds2-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Avoid overflow src_stride calculation in unpack_stream (CVE-2026-3308)
     (Closes: #1133189)
Checksums-Sha1:
 d182c8653fcaafa954b358895110551613cdd593 2558 mupdf_1.21.1+ds2-1+deb12u1.dsc
 6928199d6234832722020d045d85f197fd16557e 5263868 mupdf_1.21.1+ds2.orig.tar.xz
 0d86697f9570558e6e204353ea6e9f24b4981b2c 28632 mupdf_1.21.1+ds2-1+deb12u1.debian.tar.xz
 638ad0c2b01190d49d6ce2c7bd99483f8f191126 7052 mupdf_1.21.1+ds2-1+deb12u1_source.buildinfo
Checksums-Sha256:
 2de3d44d33bca18e22f0d560eb1511b57fa85c58d914190efc3fa1f5c3870866 2558 mupdf_1.21.1+ds2-1+deb12u1.dsc
 554cd99989cf2a789654a67f6d0a6764570e5f427deb6de6dc7251fa610d0333 5263868 mupdf_1.21.1+ds2.orig.tar.xz
 52a0d3efbde1436988bc6240ad23d361fbf9573210dce08d3fa776a0c4bda0cb 28632 mupdf_1.21.1+ds2-1+deb12u1.debian.tar.xz
 de02199776913ea2c0066124b0c96176e8f4d3228be123629e7fd08c560beaf0 7052 mupdf_1.21.1+ds2-1+deb12u1_source.buildinfo
Files:
 841a5f83408dd3088e50a961b579a97d 2558 text optional mupdf_1.21.1+ds2-1+deb12u1.dsc
 00d8b191ba538f20f70e1a2df11cddf0 5263868 text optional mupdf_1.21.1+ds2.orig.tar.xz
 fd891360369f3398d34591e227cbbbac 28632 text optional mupdf_1.21.1+ds2-1+deb12u1.debian.tar.xz
 3c307b680058f0599974859e0d56a751 7052 text optional mupdf_1.21.1+ds2-1+deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=0f/t
-----END PGP SIGNATURE-----
News for package mupdf
