[ubuntu/xenial-security] cups 2.1.3-4ubuntu0.4 (Accepted)
Chris Coulson
chrisccoulson at ubuntu.com
Tue Feb 20 21:16:16 UTC 2018
cups (2.1.3-4ubuntu0.4) xenial-security; urgency=medium
* SECURITY UPDATE: Incorrect whitelist permits DNS rebinding attacks
- debian/patches/CVE-2017-18190.patch: Don't treat "localhost.localdomain"
as an allowed replacement for localhost, since it isn't
- CVE-2017-18190
Date: 2018-02-19 17:47:13.660615+00:00
Changed-By: Chris Coulson <chrisccoulson at ubuntu.com>
https://launchpad.net/ubuntu/+source/cups/2.1.3-4ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list