UbuntuUpdates.org

Package "libcupsimage2-dev"

Name: libcupsimage2-dev

Description:

Common UNIX Printing System(tm) - Development files CUPS image library
Latest version: 2.4.1op1-1ubuntu4.15
Release: jammy (22.04)
Level: updates
Repository: main
Head package: cups
Homepage: https://github.com/OpenPrinting/cups/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libcupsimage2-dev"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libcupsimage2-dev" in Jammy

Repository Area Version
base main 2.4.1op1-1ubuntu4
security main 2.4.1op1-1ubuntu4.15

Changelog

Version: 2.4.1op1-1ubuntu4.15 2025-11-27 22:13:30 UTC

  cups (2.4.1op1-1ubuntu4.15) jammy-security; urgency=medium

  * SECURITY UPDATE: Local denial-of-service via cupsd.conf update and
    related issues
    - debian/patches/CVE-2025-61915.patch: fix various issues in cupsd in
      conf/cups-files.conf.in, config-scripts/cups-defaults.m4,
      config.h.in, configure, doc/help/man-cups-files.conf.html,
      man/cups-files.conf.5, scheduler/auth.c, scheduler/auth.h,
      scheduler/client.c, scheduler/conf.c, test/run-stp-tests.sh,
      vcnet/config.h, xcode/CUPS.xcodeproj/project.pbxproj, xcode/config.h.
    - CVE-2025-61915

 -- Marc Deslauriers <email address hidden> Wed, 19 Nov 2025 09:33:06 -0500
Source diff to previous version

Version: 2.4.1op1-1ubuntu4.12 2025-09-12 00:07:01 UTC

  cups (2.4.1op1-1ubuntu4.12) jammy-security; urgency=medium

  * SECURITY UPDATE: authorization bypass
    - d/p/CVE-2025-58060.patch: only allow basic and kerberos authentication
      if it is enabled.
    - CVE-2025-58060
  * SECURITY UPDATE: remote DoS
    - d/p/CVE-2025-58364.patch: fix null dereference in ipp_read_io().
    - CVE-2025-58364

 -- Eduardo Barretto <email address hidden> Mon, 08 Sep 2025 20:01:49 +0200
Source diff to previous version
CVE-2025-58060 OpenPrinting CUPS is an open source printing system for Linux and othe ...
CVE-2025-58364 OpenPrinting CUPS is an open source printing system for Linux and othe ...

Version: 2.4.1op1-1ubuntu4.11 2024-09-27 00:06:55 UTC

  cups (2.4.1op1-1ubuntu4.11) jammy-security; urgency=medium

  * SECURITY UPDATE: PPD injection issues (LP: #2082335)
    - debian/patches/sec-202409-1.patch: validate URIs, attribute names,
      and capabilities in cups/ppd-cache.c, scheduler/ipp.c.
    - debian/patches/sec-202409-2.patch: sanitize make and model in
      cups/ppd-cache.c.
    - debian/patches/sec-202409-3.patch: PPDize preset and template names
      in cups/ppd-cache.c.
    - debian/patches/sec-202409-4.patch: quote PPD localized strings in
      cups/ppd-cache.c.
    - debian/patches/sec-202409-5.patch: fix warnings in cups/ppd-cache.c.
    - CVE number pending

 -- Marc Deslauriers <email address hidden> Thu, 26 Sep 2024 07:27:55 -0400
Source diff to previous version

Version: 2.4.1op1-1ubuntu4.10 2024-06-28 15:07:31 UTC

  cups (2.4.1op1-1ubuntu4.10) jammy-security; urgency=medium

  * SECURITY REGRESSION: early exit on missing listen directive
    - d/p/fix-scheduler-start-if-only-domain-socket-to-listen.patch: don't
      exit if no valid Listen or Port found (LP: #2070315)

 -- Sudhakar Verma <email address hidden> Thu, 27 Jun 2024 19:09:25 +0530
Source diff to previous version
2070315 error in /etc/cups/cupsd.conf from today's patch

Version: 2.4.1op1-1ubuntu4.9 2024-06-24 14:07:13 UTC

  cups (2.4.1op1-1ubuntu4.9) jammy-security; urgency=medium

  * SECURITY UPDATE: cupsd listen arbitrary chmod 0140777
    - debian/patches/CVE-2024-35235.patch: validate status of unlink and bind
      in cups/http-addr.c
    - CVE-2024-35235

 -- Sudhakar Verma <email address hidden> Fri, 21 Jun 2024 00:32:50 +0530
CVE-2024-35235 OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the


About   -   Send Feedback to @ubuntu_updates