Re: [PATCH] gnu: mupdf: Fix some security problems in bundled mujs.

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] gnu: mupdf: Fix some security problems in bundled mujs.

From:	Leo Famulari
Subject:	Re: [PATCH] gnu: mupdf: Fix some security problems in bundled mujs.
Date:	Sun, 15 Jan 2017 20:27:10 -0500
User-agent:	Mutt/1.7.2 (2016-11-26)

On Sun, Jan 15, 2017 at 06:05:02PM -0500, Mark H Weaver wrote:
> Hi Leo,
> 
> Leo Famulari <address@hidden> writes:
> 
> > From 34cc0dc9d9451d540f8733ebca2a3db54a073aa0 Mon Sep 17 00:00:00 2001
> > From: Marius Bakke <address@hidden>
> > Date: Thu, 12 Jan 2017 19:06:55 +0100
> > Subject: [PATCH 1/2] gnu: mupdf: Fix CVE-2016-{10132,10133} in bundled mujs.
> >
> > * gnu/packages/patches/mupdf-mujs-CVE-2016-10132.patch,
> > gnu/packages/patches/mupdf-mujs-CVE-2016-10133.patch: New files.
> > * gnu/local.mk (dist_patch_DATA): Add them.
> > * gnu/packages/pdf.scm (mupdf)[replacement]: New field.
> 
> We should indeed add a 'replacement' field to 'mupdf', but that part of
> the patch seems to have gotten lost:

I suspected something was wrong. Thank you for catching this.

And thanks to Marius as well! I'm happy to be collaborating on these
commits.

I pushed the changes as 8afabb2eca954af6fbba8c6ae37e8f0bc3047840.

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH] gnu: mupdf: Fix some security problems in bundled mujs., (continued)

Prev by Date: Re: [PATCH] gnu: Add notmuch-vim.
Next by Date: [PATCH 1/1] gnu: Add scrypt.
Previous by thread: Re: [PATCH] gnu: mupdf: Fix some security problems in bundled mujs.
Next by thread: Packaging IceCat extensions with Guix
Index(es):
- Date
- Thread