mupdf (0.9-2+deb7u4) wheezy-security; urgency=high

  * Non-maintainer upload by the LTS team.
  * Fix CVE-2017-15587:
    An integer overflow was discovered in pdf_read_new_xref_section in
    pdf/pdf_xref.c
  * Fix CVE-2017-14687:
    MuPDF allows attackers to cause a denial of service or possibly have
    unspecified other impact via a crafted .xps file. This occurs because of
    mishandling of XML tag name comparisons.

 -- Markus Koschany <apo@debian.org>  Tue, 07 Nov 2017 12:38:35 +0100

mupdf (0.9-2+deb7u3) wheezy-security; urgency=high

  * Non-maintainer upload by the LTS Team.
  * Backport fix for CVE-2016-6525: heap overflow in pdf_load_mesh_params()
    from upstream git commit 39b0f07dd960f34e7e6bf230ffc3d87c41ef0f2e.

 -- Jonas Meurer <mejo@debian.org>  Sat, 06 Aug 2016 16:13:05 +0200

mupdf (0.9-2+deb7u2) wheezy-security; urgency=high

  * Fix header mismatch with libjpeg-dev.

 -- Kan-Ru Chen (陳侃如) <koster@debian.org>  Wed, 04 Jun 2014 22:46:25 +0800

mupdf (0.9-2+deb7u1) wheezy-security; urgency=high

  * Backport fix of CVE-2014-2013: Stack-based Buffer Overflow in
    xps_parse_color() from unstable. (Closes: #738857)

 -- Kan-Ru Chen (陳侃如) <koster@debian.org>  Tue, 03 Jun 2014 23:59:34 +0800

mupdf (0.9-2) unstable; urgency=low

  * Enable harden flags.
  * debian/copyright: Updated.
  * Bump Standards-Version to 3.9.2, no changes needed
  * debian/patches/bug621894.patch: Fix text copying with
    selection. (Closes: #621894)
  * debian/patches/bug646350.patch: Fix FTBFS with
    -Werror=format-security. (Closes: #646350)

 -- Kan-Ru Chen <koster@debian.org>  Sat, 17 Dec 2011 22:25:35 +0800

mupdf (0.9-1) unstable; urgency=low

  * New upstream release. (Closes: #641169)
  * debian/patches/mupdf_update_manpages.patch: Merged upstream.
  * debian/libmupdf-dev.install: Install more library and headers.

 -- Kan-Ru Chen <koster@debian.org>  Sun, 11 Sep 2011 12:08:18 +0800

mupdf (0.8.15-1) unstable; urgency=low

  * New upstream release.
  * debian/patches/mupdf_fix_build.patch,
    debian/patches/mupdf_install_manpages_default.patch,
    debian/patches/mupdf_move_manpages_to_upstream.patch,
    debian/patches/mupdf_remove_extra_usage.patch: Merged upstream.
  * debian/watch: Upstream now uses google code hosting.

 -- Kan-Ru Chen <koster@debian.org>  Tue, 05 Apr 2011 20:03:33 +0800

mupdf (0.8-1) unstable; urgency=low

  * New upstream release. (Closes: #604746)
  * debian/patches/mupdf_move_manpages_to_upstream.patch,
    debian/patches/mupdf_update_manpages.patch: Sync with upstream.
    Remove debug purpose keybinding from manpage. (Closes: #597337)
  * Add NoDisplay=true to mupdf.desktop as the application is not
    intended for standalone use but a viewer. (Closes: #602293)
  * debian/mupdf.menu: Removed as well.
  * debian/patches/mupdf_remove_extra_usage.patch: New patch, remove
    redundant usage string from output.
  * Add non-standard DEB_BUILD_OPTIONS x-fpic support. (Closes: #617253)

 -- Kan-Ru Chen <koster@debian.org>  Wed, 09 Mar 2011 11:23:12 +0800

mupdf (0.7-2) unstable; urgency=low

  * Fix FTBFS on hurd-i386, kfreebsd-amd64, kfreebsd-i386

 -- Kan-Ru Chen <koster@debian.org>  Wed, 15 Sep 2010 17:15:47 +0800

mupdf (0.7-1) unstable; urgency=low

  * New upstream release
    (Closes: #590263, #590264, #590245)
  * Update manpages to reflect keybinding change
  * Patch build system to accept additional CFLAGS.
  * Add mupdf-tools to Suggests of mupdf. (Closes: #593446)
  * Update watch file
  * Bump Standards-Version to 3.9.1, no changes needed

 -- Kan-Ru Chen <koster@debian.org>  Wed, 15 Sep 2010 02:27:06 +0800

mupdf (0.6-1) unstable; urgency=low

  * Initial release. (Closes: #559906)

 -- Kan-Ru Chen <koster@debian.org>  Thu, 22 Jul 2010 08:23:00 +0800
