Debian Bug report logs -
#853004
calibre: CVE-2016-10187: javascript in the book can access files on the computer using XMLHttpRequest
Package:
calibre;
Maintainer for calibre is Norbert Preining <norbert@preininginfo>; Source for calibre is src:calibre (PTS, buildd, popcon)
Reported by: Antoine Beaupre <anarcat@debiano ...