-
cups (2.2.10-6+deb10u6) buster-security; urgency=high
* CVE-2022-26691
Fix certificate comparison.
(Thanks to Zdenek Dohnal <email address hidden> for the patch)
-- Thorsten Alteholz <email address hidden> Mon, 23 May 2022 22:03:02 +0200
-
cups (2.2.10-6+deb10u5) buster; urgency=medium
* Non-maintainer upload by the LTS Team.
* CVE-2020-10001.patch
An input validation issue might allow a malicious application
to read restricted memory.
-- Thorsten Alteholz <email address hidden> Wed, 23 Feb 2022 22:03:02 +0100
-
cups (2.2.10-6+deb10u4) buster; urgency=medium
* Backport upstream fix:
- backend,scheduler/ipp.c: Fix 'printer-alert' invalid free
(Closes: #961345)
-- Didier Raboud <email address hidden> Sat, 28 Nov 2020 12:09:48 +0100
-
cups (2.2.10-6+deb10u3) buster; urgency=medium
* Backport upstream security fixes:
- CVE-2020-3898: heap-buffer-overflow in libcups’s ppdFindOption()
function in ppd-mark.c
- CVE-2019-8842: The `ippReadIO` function may under-read an extension
field
-- Didier Raboud <email address hidden> Sat, 25 Apr 2020 16:27:21 +0200
-
cups (2.2.10-6+deb10u2) buster; urgency=medium
* Backport upstream security fixes:
- Fix memory leak in ppdOpen (Closes: #946941)
- CVE-2019-2228: The `ippSetValuetag` function did not validate the
default language value (Closes: #946782)
-- Didier Raboud <email address hidden> Sun, 19 Jan 2020 09:36:31 +0100
-
cups (2.2.10-6+deb10u1) buster; urgency=medium
* Fix multiple security/disclosure issues (Closes: #934957)
- CVE-2019-8696 and CVE-2019-8675: Fixed SNMP buffer overflows
- Fixed IPP buffer overflow
- Fixed memory disclosure issue in the scheduler
- Fixed DoS issues in the scheduler
-- Didier Raboud <email address hidden> Wed, 21 Aug 2019 09:43:13 +0200
-
cups (2.2.10-6) unstable; urgency=medium
* Backport patch from upstream's 2.2 "stable" branch:
- Fix an issue with `PreserveJobHistory` and time values (Issue #5538)
(Closes: #921741)
-- Didier Raboud <email address hidden> Tue, 23 Apr 2019 08:33:01 +0200
-
cups (2.2.10-5) unstable; urgency=medium
[ Helge Kreutzmann ]
* Correct error in german manpage translation
[ Didier Raboud ]
* Backport patches from upstream's 2.2 "stable" branch:
- Add USB quirks rule for Xerox printers (Issue #5523)
- Add a USB quirks rule for the DYMO 450 Turbo (Issue #5521)
-- Didier Raboud <email address hidden> Wed, 27 Mar 2019 17:13:07 +0100
-
cups (2.2.10-4) unstable; urgency=low
* Backport patches from upstream's 2.2 "stable" branch:
- Protect against continuing to read from a file at EOF (Issue #5473)
- Use the same requested-attributes values for all IPP Everywhere setup
requests (Issue #5484)
- Add a USB quirk rule for the Lexmark E120n (Issue #5478)
- Updated the USB quirks rule for Zebra label printers (Issue #5395)
- Fix compile error on Linux (Issue #5483)
- Stop parsing the Emulators keywords in PPD files (Issue #5475)
- Fix potential unaligned accesses in the string pool (Issue #5474)
-- Didier Raboud <email address hidden> Sat, 16 Feb 2019 14:48:42 +0100
-
cups (2.2.10-3) unstable; urgency=medium
* reprotest errors; cleanup patches:
- Remove culprit patches refused for upstream integration:
- patch to implement PRINTER_LIST printer filtering (see #3092)
- patch to read embedded options from postcript (see #4344)
- patch to cope with newline in device IDs (see #4345)
- Update no-conffile-timestamp.patch for syntax bug
-- Didier Raboud <email address hidden> Fri, 14 Dec 2018 12:53:56 +0100
-
cups (2.2.9-2) unstable; urgency=medium
* Revert 2.2.9 lpadmin fixes to circumvent 2.2.9 regression revealed
by autopkgtest, see https://github.com/apple/cups/issues/5440
-- Didier Raboud <email address hidden> Mon, 19 Nov 2018 21:53:01 +0100
-
cups (2.2.8-5) unstable; urgency=high
* CVE-2018-6553: Fix AppArmor cupsd sandbox bypass due to use of hard links
(Closes: #903605)
* All these were fixed in 2.2.8:
- CVE-2018-4180 Local Privilege Escalation to Root in dnssd Backend
(CUPS_SERVERBIN)
- CVE-2018-4181 Limited Local File Reads as Root via cupsd.conf Include
Directive
- CVE-2018-4182 cups-exec Sandbox Bypass Due to Insecure Error Handling
- CVE-2018-4183 cups-exec Sandbox Bypass Due to Profile Misconfiguration
-- Didier Raboud <email address hidden> Thu, 12 Jul 2018 18:48:48 +0200
-
cups (2.2.8-4) unstable; urgency=medium
* Backport upstream patches:
- Fix A4 crash in Epson 24-pin driver (Closes: #901860)
-- Didier Raboud <email address hidden> Tue, 03 Jul 2018 07:18:20 +0200
-
cups (2.2.8-3) unstable; urgency=medium
* Renumber first 2.2.8 upload as 2.2.8-1; skip -2.
* Drop the "Generalize the input validation of some kinds of attributes."
revert in favour of "Fix regressions in ippValidateAttribute" from upstream
-- Didier Raboud <email address hidden> Mon, 11 Jun 2018 19:34:03 +0200
-
cups (2.2.8-2) unstable; urgency=medium
* New upstream 2.2.8 release
- The scheduler allowed environment variables to be specified in the
`cupsd.conf` file
[ Didier Raboud ]
* Revert "Generalize the input validation of some kinds of attributes."
Fixes FTBFS on 2.2.8, see https://github.com/apple/cups/issues/5322
* Manpage refresh after 2.2.8
[ Helge Kreutzmann ]
* Update German man page (2193t)
-- Didier Raboud <email address hidden> Fri, 08 Jun 2018 14:54:46 +0200
-
cups (2.2.7-5) unstable; urgency=medium
[ Jean-Paul Guillonneau ]
* Update French man page (2185t2f) (Closes: #897406)
[ Didier Raboud ]
* Manpage refresh after 2.2.7
-- Didier Raboud <email address hidden> Wed, 16 May 2018 23:32:28 +0200
-
cups (2.2.7-3) unstable; urgency=medium
* Backport an upstream fix:
- Fix another CUPS-Create-Local-Printer crash (Issue #5290)
-- Didier Raboud <email address hidden> Wed, 11 Apr 2018 17:05:27 +0200
-
cups (2.2.7-2) unstable; urgency=medium
* Autopkgtest: blacklist the now-deprecated 'raw' queues (Closes: #894643)
-- Didier Raboud <email address hidden> Tue, 03 Apr 2018 08:51:54 +0200
-
cups (2.2.7-1) unstable; urgency=medium
* New 2.2.7 upstream release
- NOTICE: Raw print queues are now deprecated (Issue #5269)
- Fixed an Avahi crash bug in the scheduler (Issue #5268, LP: #1725749)
- Systemd did not restart cupsd when configuration changes were made that
required a restart (Issue #5263. Closes: #861470)
- The scheduler could crash while adding an IPP Everywhere printer (Issue
#5258, LP: #1750514)
- The `lp` and `lpr` commands now provide better error messages when the
default printer cannot be found (Issue #5096, Closes: #870463)
* Add cupsHashString@Base 2.2.7 symbol
* Add lintian override for cups.service WantedBy=printer.target
-- Didier Raboud <email address hidden> Tue, 27 Mar 2018 19:45:49 +0200
-
cups (2.2.6-5) unstable; urgency=medium
* Bump S-V to 4.1.3 without changes needed
* Update Vcs-* fields for the move to salsa.d.o
-- Didier Raboud <email address hidden> Sat, 10 Feb 2018 11:14:39 +0100
-
cups (2.2.6-4) unstable; urgency=medium
* Fix CI: indexv[3,4] Braille drivers cannot print PDF
-- Didier Raboud <email address hidden> Sun, 31 Dec 2017 11:35:12 +0100
-
cups (2.2.6-3) unstable; urgency=medium
[ Helge Kreutzmann ]
* Update German man page translations
[ Didier Raboud ]
* Bump S-V to 4.1.2 without changes needed
* Remove trailing whitespace in d/control and d/changelog
* Drop duplicate priority field for cups-bsd
-- Didier Raboud <email address hidden> Mon, 18 Dec 2017 21:52:25 +0100
-
cups (2.2.6-2) unstable; urgency=medium
* Backport upstream patch from the 2.3 branch:
- The `lp` and `lpr` commands now provide better error messages when the
default printer cannot be found (Issue #5096, Closes: #870463)
* On the repository: reduce the diff to the upstream tarball to zero to
allow uploads with dgit.
-- Didier Raboud <email address hidden> Fri, 03 Nov 2017 12:55:53 +0100
-
cups (2.2.5-2) unstable; urgency=medium
[ Helge Kreutzmann ]
* Update German man page translations
-- Didier Raboud <email address hidden> Tue, 17 Oct 2017 08:43:33 +0200
-
cups (2.2.4-7) unstable; urgency=medium
[ Till Kamppeter ]
* Backport upstream fixes:
- Fix the interactions between the "print-quality" and "cupsPrintQuality"
options (Issue #5090)
- Fix mapping and defaulting of print-quality/cupsPrintQuality (Issue #5090)
- Fix for resolution list sorting in the PPD generator which caused
segfaults when generating PPDs for driverless printing
- The scheduler (incorrectly) woke up once per second to remove stale
temporary queues (Issue #5100)
-- Didier Raboud <email address hidden> Wed, 13 Sep 2017 18:53:20 +0200
-
cups (2.2.4-6) unstable; urgency=medium
[ intrigeri ]
* AppArmor: allow dac_read_search, now needed on top of dac_override
(Closes: #872817)
-- Didier Raboud <email address hidden> Mon, 04 Sep 2017 09:22:26 +0200
-
cups (2.2.4-5) unstable; urgency=medium
* Backport one upstream patch, thanks to Christoph Pleger
- The CUPS library did not reuse domain sockets
(Issue #5098, Closes: #868316)
-- Didier Raboud <email address hidden> Tue, 29 Aug 2017 09:21:15 +0200
-
cups (2.2.4-3) unstable; urgency=medium
[ Helge Kreutzmann ]
* Update German man page translations
-- Didier Raboud <email address hidden> Fri, 21 Jul 2017 15:00:58 +0200
-
cups (2.2.4-2) unstable; urgency=low
* Cleanup patch suite to come closer to upstream:
- Remove IPP backend from CUPS 1.4
- Remove cupsd upstart support
- Remove a test weakening for mips
- Remove libcupsppdc dynamic linking for mipsen
* Don't install the ipp14 backend
* Drop all postinst code managing versions before the current oldoldstable
(wheezy, 1.5.3-5)
* Drop all postinst code managing versions before the current oldstable
(jessie, 1.7.5-11)
* Drop the Ubuntu-specific upstart patches and files
* Drop Launchpad PNG_PKG_MANGLE workaround
* Drop two unused lintian overrides
* Allow parallel builds
* Backport upstream patch:
- The `cupsGetDests` function incorrectly returned an empty list of
printers if there was no default printer (Issue #5046, Closes: #867818)
[ Vangelis Skarmoutsos ]
* Add Greek translation for debconf templates (Closes: #867339)
-- Didier Raboud <email address hidden> Mon, 10 Jul 2017 21:23:54 +0200