[Git][security-tracker-team/security-tracker][master] CVE-2017-17866/mupdf already fixed in 1.11.1 upstream and included in 1.12.0+ds1-1
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 30 06:07:04 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8f81b2e2 by Salvatore Bonaccorso at 2018-04-30T07:06:08+02:00
CVE-2017-17866/mupdf already fixed in 1.11.1 upstream and included in 1.12.0+ds1-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -18672,7 +18672,7 @@ CVE-2017-17868 (In Liferay Portal 6.1.0, the tags section has XSS via a Public R
CVE-2017-17867 (Inteno iopsys 2.0-3.14 and 4.0 devices allow remote authenticated users ...)
NOT-FOR-US: Inteno iopsys
CVE-2017-17866 (pdf/pdf-write.c in Artifex MuPDF before 1.12.0 mishandles certain ...)
- - mupdf <unfixed> (bug #885120)
+ - mupdf 1.12.0+ds1-1 (bug #885120)
[stretch] - mupdf <no-dsa> (Minor issue)
[jessie] - mupdf <no-dsa> (Minor issue)
[wheezy] - mupdf <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f81b2e27b92cae3b0305120702c00d5b44da516
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f81b2e27b92cae3b0305120702c00d5b44da516
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180430/49fd9e4b/attachment.html>
More information about the debian-security-tracker-commits
mailing list