cups (2.2.1-8+deb9u6) stretch; urgency=medium * Backport upstream security fixes: - CVE-2020-3898: heap-buffer-overflow in libcups’s ppdFindOption() function in ppd-mark.c - CVE-2019-8842: The `ippReadIO` function may under-read an extension field -- Didier Raboud <email address hidden> Mon, 27 Apr 2020 08:50:13 +0200