Package: okular / 4:16.08.2-1+deb9u1

Metadata

Package Version Patches format
okular 4:16.08.2-1+deb9u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
temporarily_disable_failing_test | (download)

tests/CMakeLists.txt | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 temporarily_disable_failing_test

===================================================================

CVE 2018 1000801.patch | (download)

core/document.cpp | 13 13 + 0 - 0 !
1 file changed, 13 insertions(+)

 fix path traversal issue when extracting an .okular file

Summary:
With specially crafted .okular files you can trick okular to create temporary files outside the temporary folder

We fix that by making sure the file doesn't have folders since the ones we create don't

BUGS: 398096

Subscribers: okular-devel

Tags: #okular