evince (3.18.2-1ubuntu4.3) xenial-security; urgency=medium
* SECURITY UPDATE: command injection in dvi backend
- debian/patches/CVE-2017-1000159.patch: properly quote filename in
backend/dvi/dvi-document.c.
- CVE-2017-1000159
Date: 2017-11-30 20:22:12.201544+00:00
Changed-By: Marc Deslauriers <[email protected]>
Signed-By: Ubuntu Archive Robot
<[email protected]>
https://launchpad.net/ubuntu/+source/evince/3.18.2-1ubuntu4.3
Sorry, changesfile not available.
--
Xenial-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
