A zathura-pdf-mupdf security update has been released for Fedora 33.

SECURITY: Fedora 33 Update: zathura-pdf-mupdf-0.3.6-4.fc33

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-972ad7c8a8
2020-10-23 22:01:02.259755
--------------------------------------------------------------------------------

Name : zathura-pdf-mupdf
Product : Fedora 33
Version : 0.3.6
Release : 4.fc33
URL :   https://pwmt.org/projects/zathura-pdf-mupdf/
Summary : PDF support for zathura via mupdf
Description :
This plugin adds PDF support to zathura using the mupdf rendering engine.

--------------------------------------------------------------------------------
Update Information:

mupdf 1.18.0 and depending packages
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 9 2020 Michael J Gruber - 0.3.6-4
- link against gumbo
* Thu Oct 8 2020 Michael J Gruber - 0.3.6-3
- rebuild for mupdf 1.18.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1886338 - CVE-2020-26519 mupdf: heap based buffer over-write when parsing JBIG2 files allows DoS
  https://bugzilla.redhat.com/show_bug.cgi?id=1886338
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-972ad7c8a8' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys