mupdf: CVE-2016-6525: heap overflow in pdf_load_mesh_params()

Debian Bug report logs - #833417
mupdf: CVE-2016-6525: heap overflow in pdf_load_mesh_params()

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: mupdf: CVE-2016-6525: heap overflow in pdf_load_mesh_params()

Date: Thu, 04 Aug 2016 06:51:34 +0200

Source: mupdf
Version: 1.5-1
Severity: important
Tags: security upstream patch

Hi,

the following vulnerability was published for mupdf.

CVE-2016-6525[0]:
heap overflow in pdf_load_mesh_params()

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-6525

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Message #10 received at 833417@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: 833417@bugs.debian.org

Subject: mupdf: diff for NMU version 1.9a+ds1-1.2

Date: Sat, 6 Aug 2016 13:50:39 +0200

[Message part 1 (text/plain, inline)]

Control: tags 833417 + pending

Hi,

I've prepared an NMU for mupdf (versioned as 1.9a+ds1-1.2) and
uploaded it to DELAYED/10. Please feel free to tell me if I
should delay it longer.

Regards,
Salvatore

[mupdf-1.9a+ds1-1.2-nmu.diff (text/x-diff, attachment)]

Message #21 received at 833417-close@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: 833417-close@bugs.debian.org

Subject: Bug#833417: fixed in mupdf 1.9a+ds1-1.2

Date: Tue, 16 Aug 2016 12:35:32 +0000

Source: mupdf
Source-Version: 1.9a+ds1-1.2

We believe that the bug you reported is fixed in the latest version of
mupdf, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 833417@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Salvatore Bonaccorso <carnil@debian.org> (supplier of updated mupdf package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Aug 2016 13:44:07 +0200
Source: mupdf
Binary: libmupdf-dev mupdf mupdf-tools
Architecture: source
Version: 1.9a+ds1-1.2
Distribution: unstable
Urgency: medium
Maintainer: Kan-Ru Chen (陳侃如) <koster@debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 833417
Description: 
 libmupdf-dev - development files for the MuPDF viewer
 mupdf      - lightweight PDF viewer
 mupdf-tools - command line tools for the MuPDF viewer
Changes:
 mupdf (1.9a+ds1-1.2) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2016-6525: heap overflow in pdf_load_mesh_params() (Closes: #833417)
Checksums-Sha1: 
 3c5a415135e3340a006f25464dcc4cd0307484b6 2147 mupdf_1.9a+ds1-1.2.dsc
 9b30a931264ed8239cf297ccd9d8f30667f6bef6 25328 mupdf_1.9a+ds1-1.2.debian.tar.xz
Checksums-Sha256: 
 169352de48b195bb9614a49a38311444d74b410d237bcba616bc7a2bc7ad246b 2147 mupdf_1.9a+ds1-1.2.dsc
 a03d8c84bf1fe0cdc1ad52d304b686769cde9af23c2823ee9ce9f359f66db24b 25328 mupdf_1.9a+ds1-1.2.debian.tar.xz
Files: 
 d834524c7a4448da3d078ce4c3a9e016 2147 text optional mupdf_1.9a+ds1-1.2.dsc
 62210128030248a7f24f26dc80a851b6 25328 text optional mupdf_1.9a+ds1-1.2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=NtdS
-----END PGP SIGNATURE-----

Message #26 received at 833417-close@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: 833417-close@bugs.debian.org

Subject: Bug#833417: fixed in mupdf 1.5-1+deb8u1

Date: Sun, 28 Aug 2016 12:47:45 +0000

Source: mupdf
Source-Version: 1.5-1+deb8u1

We believe that the bug you reported is fixed in the latest version of
mupdf, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 833417@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Salvatore Bonaccorso <carnil@debian.org> (supplier of updated mupdf package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 25 Aug 2016 16:43:34 +0200
Source: mupdf
Binary: libmupdf-dev mupdf mupdf-tools
Architecture: source
Version: 1.5-1+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Kan-Ru Chen (陳侃如) <koster@debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 832031 833417
Description: 
 libmupdf-dev - development files for the MuPDF viewer
 mupdf      - lightweight PDF viewer
 mupdf-tools - commmand line tools for the MuPDF viewer
Changes:
 mupdf (1.5-1+deb8u1) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2016-6265: Use after free vulnerability in pdf_xref.c (Closes: #832031)
   * CVE-2016-6525: heap overflow in pdf_load_mesh_params() (Closes: #833417)
Checksums-Sha1: 
 e6573c3d58e3235ddfd6100c98c4c298413e2681 2122 mupdf_1.5-1+deb8u1.dsc
 9b451774d628d2953df7591f0fcdb465f7da4fa5 7528994 mupdf_1.5.orig.tar.gz
 09478f047fb172be3017e19560481384100ec465 25224 mupdf_1.5-1+deb8u1.debian.tar.xz
Checksums-Sha256: 
 f203c1d2490900d76e05ae369a379c8fdf17aac4c636934665f9971cd37d072e 2122 mupdf_1.5-1+deb8u1.dsc
 9ef2a457c119031cbf84cf89bfe9bf01d3fbb4b739bb4707bb58bfe141102ff2 7528994 mupdf_1.5.orig.tar.gz
 1e5bfeb9debf8811727792eb4d9e0e38120d51618bcde138c46869a370f89dee 25224 mupdf_1.5-1+deb8u1.debian.tar.xz
Files: 
 2fd66461ed83b6b13f434d9acc59b51f 2122 text optional mupdf_1.5-1+deb8u1.dsc
 89dd2ad96a3679035b89007d7dcbd847 7528994 text optional mupdf_1.5.orig.tar.gz
 160af6d320bd41a41f9746e0d85997e5 25224 text optional mupdf_1.5-1+deb8u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=uyO8
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.