Package: mupdf Version: 1.5-1+b2 Severity: serious Tags: security To reproduce, mupdf breakout.pdf left click in the window
Depending where you click, you will see: > [] printed on the terminal, and/or libjs: ReferenceError: global is not defined mupdf will then apparently wait for terminal input. If mupdf is run from a web browser, this can cause worse trouble. To reproduce, in an xterm type "firefox &", and configure it to open pdfs with /usr/bin/mupdf. Then visit this pdf and click in it. Your browser will hang. The xterm shows "Stopped", because the process group is requesting tty input. (To recover: killall mupdf-x11, and bg the firefox.) Thanks for your attention. Ian. -- Ian Jackson <ijack...@chiark.greenend.org.uk> These opinions are my own. If I emailed you from an address @fyvzl.net or @evade.org.uk, that is a private address which bypasses my fierce spamfilter.
