UbuntuUpdates.org

Package "cups"

Name: cups

Description:

Common UNIX Printing System(tm) - PPD/driver support, web interface

Latest version: 2.3.1-9ubuntu1.8
Release: focal (20.04)
Level: security
Repository: main
Homepage: https://www.cups.org/

Links


Download "cups"


Other versions of "cups" in Focal

Repository Area Version
base main 2.3.1-9ubuntu1
updates main 2.3.1-9ubuntu1.8

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.3.1-9ubuntu1.8 2024-06-28 13:07:08 UTC

  cups (2.3.1-9ubuntu1.8) focal-security; urgency=medium

  * SECURITY REGRESSION: early exit on missing listen directive
    - d/p/fix-scheduler-start-if-only-domain-socket-to-listen.patch: don't
      exit if no valid Listen or Port found (LP: #2070315)

 -- Sudhakar Verma <email address hidden> Thu, 27 Jun 2024 18:40:32 +0530

Source diff to previous version
2070315 error in /etc/cups/cupsd.conf from today's patch

Version: 2.3.1-9ubuntu1.7 2024-06-24 13:07:21 UTC

  cups (2.3.1-9ubuntu1.7) focal-security; urgency=medium

  * SECURITY UPDATE: cupsd listen arbitrary chmod 0140777
    - debian/patches/CVE-2024-35235.patch: validate status of unlink and bind
      in cups/http-addr.c
    - CVE-2024-35235

 -- Sudhakar Verma <email address hidden> Sun, 23 Jun 2024 02:43:24 +0530

Source diff to previous version
CVE-2024-35235 OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the

Version: 2.3.1-9ubuntu1.6 2023-09-20 16:08:29 UTC

  cups (2.3.1-9ubuntu1.6) focal-security; urgency=medium

  * SECURITY UPDATE: Postscript parsing heap overflow
    - debian/patches/CVE-2023-4504.patch: properly check for end of buffer
      in cups/raster-interpret.c.
    - CVE-2023-4504

 -- Marc Deslauriers <email address hidden> Fri, 15 Sep 2023 07:20:26 -0400

Source diff to previous version
CVE-2023-4504 Postscript parsing heap-based buffer overflow

Version: 2.3.1-9ubuntu1.5 2023-09-12 19:08:00 UTC

  cups (2.3.1-9ubuntu1.5) focal-security; urgency=medium

  * SECURITY UPDATE: recently printed documents authentication issue
    - debian/patches/CVE-2023-32360.patch: require authentication for
      CUPS-Get-Document in conf/cupsd.conf.in.
    - CVE-2023-32360

 -- Marc Deslauriers <email address hidden> Mon, 11 Sep 2023 12:30:19 -0400

Source diff to previous version
CVE-2023-32360 An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventu

Version: 2.3.1-9ubuntu1.4 2023-06-22 13:07:01 UTC

  cups (2.3.1-9ubuntu1.4) focal-security; urgency=medium

  * SECURITY UPDATE: use-after-free in cupsdAcceptClient()
    - debian/patches/CVE-2023-34241.patch: log result of httpGetHostname
      BEFORE closing the connection in scheduler/client.c.
    - CVE-2023-34241

 -- Marc Deslauriers <email address hidden> Tue, 13 Jun 2023 08:17:47 -0400




About   -   Send Feedback to @ubuntu_updates