From ${URL} : A null pointer dereference discovered by Kamil Frankowicz was fixed in mupdf. Commit fix: http://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=40ac85bfb676bb4373bda4b18f9fd90268c9f1e9 Details: https://bugs.ghostscript.com/show_bug.cgi?id=697514 @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
commit 54f3dbbee64dfa9de3193a16daa5ff254d4963b2 Author: Michael Weber <xmw@gentoo.org> Date: Thu Feb 9 22:10:20 2017 +0100 app-text/mupdf: Revbump to fix null pointer dereference (bug 608702) and heap overflow (bug 608712). Package-Manager: Portage-2.3.3, Repoman-2.3.1
Stabilization happens in bug 608712.
commit f7f45315f7279b0a380dcb6728d5ffb033bd2c4e Author: Michael Weber <xmw@gentoo.org> Date: Mon Feb 13 18:04:53 2017 +0100 app-text/mupdf: Remove old version (bug 608712, bug 608702). Package-Manager: Portage-2.3.3, Repoman-2.3.1 app-text/mupdf/mupdf-1.10a.ebuild
Added to an existing GLSA request.
This issue was resolved and addressed in GLSA 201702-12 at https://security.gentoo.org/glsa/201702-12 by GLSA coordinator Thomas Deutschmann (whissi).