[ubuntu/disco-security] cups 2.2.10-4ubuntu2.1 (Accepted)
Alex Murray
alex.murray at canonical.com
Tue Aug 20 04:10:42 UTC 2019
cups (2.2.10-4ubuntu2.1) disco-security; urgency=medium
* SECURITY UPDATE: Stack buffer overflow in SNMP ASN.1 decoder
- debian/patches/CVE-2019-86xx.patch: update cups/snmp.c to check for
buffer overflow when decoding various ASN.1 elements.
- CVE-2019-8675
- CVE-2019-8696
* SECURITY UPDATE: Buffer overflow in IPP
- debian/patches/CVE-2019-86xx.patch: update cups/ipp.c to avoid
buffer overflow due to tag type confusion
* SECURITY UPDATE: Denial of service and memory disclosure in scheduler
- debian/patches/CVE-2019-86xx.patch: update scheduler/client.c to
avoid a denial of service and possible memory disclosure if the
client unexpectedly closes the connection
Date: 2019-08-20 00:28:13.239143+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
https://launchpad.net/ubuntu/+source/cups/2.2.10-4ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Disco-changes
mailing list