Debian 10261 Published by

A pdfresurrect security update has been released for Debian GNU/Linux 8 LTS to address an out-of-bounds write vulnerability in pdfresurrect.



Package : pdfresurrect
Version : 0.12-5+deb8u1
CVE ID : CVE-2020-9549
Debian Bug : #952948

It was discovered that there was an out-of-bounds write vulnerability
in pdfresurrect, a tool for extracting or scrubbing versioning data
from PDF documents.

For Debian 8 "Jessie", this issue has been fixed in pdfresurrect version
0.12-5+deb8u1.

We recommend that you upgrade your pdfresurrect packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://wiki.debian.org/LTS