blob: f8bbf1245cb31a2fb95b4f0a617a6fce0747db4e (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>It was discovered that there was an arbitrary command injection in the
evince PDF viewer.</p>
<p>A specially-crafted embedded DVI filename could be exploited to run
commands as the current user when <q>printing</q> to PDF.</p>
<p>For Debian 7 <q>Wheezy</q>, this issue has been fixed in evince version
3.4.0-3.1+deb7u2.</p>
<p>We recommend that you upgrade your evince packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2017/dla-1204.data"
# $Id: $
|
