UbuntuUpdates.org

Package "cups-ppdc"

Name: cups-ppdc

Description:

Common UNIX Printing System(tm) - PPD manipulation utilities

Latest version: 2.4.7-1.2ubuntu7.3
Release: noble (24.04)
Level: security
Repository: main
Head package: cups
Homepage: https://github.com/OpenPrinting/cups/

Links


Download "cups-ppdc"


Other versions of "cups-ppdc" in Noble

Repository Area Version
base main 2.4.7-1.2ubuntu7
updates main 2.4.7-1.2ubuntu7.3

Changelog

Version: 2.4.7-1.2ubuntu7.3 2024-09-26 22:06:53 UTC

  cups (2.4.7-1.2ubuntu7.3) noble-security; urgency=medium

  * SECURITY UPDATE: PPD injection issues (LP: #2082335)
    - debian/patches/sec-202409-1.patch: validate URIs, attribute names,
      and capabilities in cups/ppd-cache.c, scheduler/ipp.c.
    - debian/patches/sec-202409-2.patch: sanitize make and model in
      cups/ppd-cache.c.
    - debian/patches/sec-202409-3.patch: PPDize preset and template names
      in cups/ppd-cache.c.
    - debian/patches/sec-202409-4.patch: quote PPD localized strings in
      cups/ppd-cache.c.
    - debian/patches/sec-202409-5.patch: fix warnings in cups/ppd-cache.c.
    - CVE number pending

 -- Marc Deslauriers <email address hidden> Thu, 26 Sep 2024 07:15:36 -0400

Source diff to previous version

Version: 2.4.7-1.2ubuntu7.2 2024-06-28 13:07:13 UTC

  cups (2.4.7-1.2ubuntu7.2) noble-security; urgency=medium

  * SECURITY REGRESSION: early exit on missing listen directive
    - d/p/fix-scheduler-start-if-only-domain-socket-to-listen.patch: don't
      exit if no valid Listen or Port found (LP: #2070315)

 -- Sudhakar Verma <email address hidden> Thu, 27 Jun 2024 19:17:32 +0530

Source diff to previous version
2070315 error in /etc/cups/cupsd.conf from today's patch

Version: 2.4.7-1.2ubuntu7.1 2024-06-24 13:07:40 UTC

  cups (2.4.7-1.2ubuntu7.1) noble-security; urgency=medium

  * SECURITY UPDATE: cupsd listen arbitrary chmod 0140777
    - debian/patches/CVE-2024-35235.patch: validate status of unlink and bind
      in cups/http-addr.c
    - CVE-2024-35235

 -- Sudhakar Verma <email address hidden> Fri, 21 Jun 2024 13:37:25 +0530

CVE-2024-35235 OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the



About   -   Send Feedback to @ubuntu_updates