Your message dated Sat, 06 Aug 2016 13:22:03 +0000 with message-id <e1bw1yb-0008lq...@franck.debian.org> and subject line Bug#832031: fixed in mupdf 1.9a+ds1-1.1 has caused the Debian Bug report #832031, regarding mupdf: CVE-2016-6265: use-after-free to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 832031: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=832031 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: mupdf Version: 1.9a+ds1-1 Severity: important Tags: security upstream Forwarded: http://bugs.ghostscript.com/show_bug.cgi?id=696941 Hi, the following vulnerability was published for mupdf. CVE-2016-6265[0]: use-after-free If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-6265 [1] http://bugs.ghostscript.com/show_bug.cgi?id=696941 Please adjust the affected versions in the BTS as needed, only the unstable version has been checked. Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: mupdf Source-Version: 1.9a+ds1-1.1 We believe that the bug you reported is fixed in the latest version of mupdf, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 832...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso <car...@debian.org> (supplier of updated mupdf package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Aug 2016 14:17:20 +0200 Source: mupdf Binary: libmupdf-dev mupdf mupdf-tools Architecture: source Version: 1.9a+ds1-1.1 Distribution: unstable Urgency: medium Maintainer: Kan-Ru Chen (陳侃如) <kos...@debian.org> Changed-By: Salvatore Bonaccorso <car...@debian.org> Closes: 832031 Description: libmupdf-dev - development files for the MuPDF viewer mupdf - lightweight PDF viewer mupdf-tools - command line tools for the MuPDF viewer Changes: mupdf (1.9a+ds1-1.1) unstable; urgency=medium . * Non-maintainer upload. * CVE-2016-6265: Use after free vulnerability in pdf_xref.c (Closes: #832031) Checksums-Sha1: b9e222a61aad9d02c1ceaf6c2c60077c44a82671 2147 mupdf_1.9a+ds1-1.1.dsc 5538043f7a6284ad167e6b21a5314488f5ef221c 24936 mupdf_1.9a+ds1-1.1.debian.tar.xz Checksums-Sha256: 0192725d0958e8295edd2ecd7eb8887d722f96aea9a5df2109f41163266aec30 2147 mupdf_1.9a+ds1-1.1.dsc 276e9a9ec67a9d4f70bb6800dcdb7bf5aa3e60ebfa4122ec639f8b47aa7ed1d9 24936 mupdf_1.9a+ds1-1.1.debian.tar.xz Files: a68488c00d44c3329f95cf06a24bb32b 2147 text optional mupdf_1.9a+ds1-1.1.dsc e4f20ee22bbf1ba956b059e3dd364b2f 24936 text optional mupdf_1.9a+ds1-1.1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJXnz+hAAoJEAVMuPMTQ89EA44P/3H1HOgGgjaJwvgp4K0RSYM1 4ixWfk+eAbqWufCJlKRvPcY0r0T9iXiI1Y/WpJRu41gkCdCh8naLns7XCPe/8FY2 3WSw5GZct33VlmDfRD5+FuZKo8OVb3PDwynFXEtJSW2XNmVpZGNnecZpZVQsk2qW Z2SpuaQhNgIdz1chUaDAtPA/4xlnYSuPjR/fpkdZH4yDfKGitULB4P5zWbrQ+qil OUdGIlaG2n0nyZ8z8mbwvK0QmVgEnYCmFCONQ74QUqNyYOX4++9q+AJpbZ7KGMNo OMYFcyJ6XXidwhcAFPWjSZ9bvwqZ7vJtlcPLQgtUPpJ9JMdiq/k78gGbXtqJ75oD kWXST2xBL+WfYvOmhfIMfwvvH21jtpsY0J3ngxfPdrgJSB3GATklyOf5cft68SE5 OYTl2y220M6qgFYAdihPsvdAb+kZDSmf/C+/EP4KePGDKeIHmJ956ykmeWDIRiRn TbXb/I9ri/M84NREJopI/EXe0xGpFvSHEGaeQU/Sc7ZSbMg8OBRe4Wjqqt1HILwt nZtiWtv1RHM0Plf44XoBg32gccjNm7rfR+LjY7CVAsou75dzqs8dsAmJkjGlehnU nNlqGl+JBhAAZnLWIj77ECsE+/lVftHuvM3ILv7klUPSsELpJ2dYFIvfd6fm6jDt TXuPmVrpFqp/2TuUCnf0 =fLyU -----END PGP SIGNATURE-----
--- End Message ---
