Updated evince packages fix security vulnerabilityPublication date: 05 Aug 2017
Affected Mageia releases : 5 , 6
Felix Wilhelm discovered that Evince did not safely invoke tar when handling tar comic book (cbt) files. An attacker could use this to construct a malicious cbt comic book format file that, when opened in Evince, executes arbitrary code. Please note that this update disables support for cbt files in Evince (CVE-2017-1000083).