Severity: important Tags: patch security Hello, This patch fixes the latest CVE of catdoc. The upstream repo[0] is not updated for more than a year, so I grab the patch from openSUSE instead (which is also used by Debian).