[website] r1736 - html/trunk/blfs/advisories

Wed, 10 Mar 2021 13:08:59 -0800 

Author: ken
Date: Wed Mar 10 13:08:50 2021
New Revision: 1736

Log:
Security Advisory for MuPDF.

Modified:
   html/trunk/blfs/advisories/10.1.html
   html/trunk/blfs/advisories/consolidated.html

Modified: html/trunk/blfs/advisories/10.1.html
==============================================================================
--- html/trunk/blfs/advisories/10.1.html        Tue Mar  9 19:54:19 2021        
(r1735)
+++ html/trunk/blfs/advisories/10.1.html        Wed Mar 10 13:08:50 2021        
(r1736)
@@ -49,6 +49,15 @@
 -->
 <!-- end of PackageName -->
 
+    <h3>MuPDF</h3>
+
+    <h4>10.1 003 MuPDF  Date: 2021-03-10  Severity: Medium</h4>
+    <p>A double free may lead to memory corruption and other potential
+    consequences. To fix this, apply the patch in the link.
+    <a href=consolidated.html#10.1-003">10.1-003</a></p>
+
+    <!-- end of MuPDF -->
+
     <h3>OpenSSH</h3>
 
     <h4>10.1 001 OpenSSH      Date: 2021-03-03  Severity: Medium</h4>

Modified: html/trunk/blfs/advisories/consolidated.html
==============================================================================
--- html/trunk/blfs/advisories/consolidated.html        Tue Mar  9 19:54:19 
2021        (r1735)
+++ html/trunk/blfs/advisories/consolidated.html        Wed Mar 10 13:08:50 
2021        (r1736)
@@ -81,6 +81,18 @@
     releases of the books.</p>
     -->
 
+    <a id="10.1-003">
+    <h4>10.1 003 MuPDF  Date: 2021-03-10  Severity: Medium</h4>
+    <p>A double free may lead to memory corruption and other potential
+    consequences. This has been assigned
+    <a 
href="https://nvd.nist.gov/vuln/detail/CVE-2021-3407";>CVE-2021-3407</a>.</p>
+    <p>To fix this, apply the patch
+    <a 
href="http://www.linuxfromscratch.org/patches/downloads/mupdf/mupdf-1.18.0-security_fix-1.patch";>mupdf-1.18.0-security_fix-1.patch</a>
+    using the instructions
+    from the development book for
+    <a href="../view/svn/pst/mupdf.html">MuPDF (sysv)</a> or
+    <a href="../view/systemd/pst/mupdf.html">MuPDF (systemd)</a>.</p>
+
     <a id="10.1-002">
     <h4>10.1 002 QtWebEngine  Date: 2021-03-10  Severity: High</h4>
     <p>In QtWebEngine before 5.15.3 there were many vulnerabilities originating
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to