cupsys 1.3.7-1ubuntu3.3 source package in Ubuntu
Changelog
cupsys (1.3.7-1ubuntu3.3) hardy-security; urgency=low
* SECURITY UPDATE: denial of service by adding a large number of RSS
subscriptions (LP: #298241)
- debian/patches/CVE-2008-5183.dpatch: gracefully handle MaxSubscriptions
being reached in scheduler/{ipp.c,subscriptions.c}.
- CVE-2008-5183
* SECURITY UPDATE: unauthorized access to RSS subscription functions in
web interface (LP: #298241)
- debian/patches/CVE-2008-5184.dpatch: make sure user is authenticated
in /cgi-bin/admin.c.
- CVE-2008-5184
* SECURITY UPDATE: arbitrary code execution via integer overflow from a PNG
image with a large height value
- This issue was introduced in the patch for CVE-2008-1722.
- debian/patches/CVE-2008-1722.dpatch: adjust patch to multiply img->xsize
instead of img->ysize so we don't overflow in filter/image-png.c.
- CVE-2008-5286
* SECURITY UPDATE: arbitrary file overwrite via temp log file symlink attack
- debian/filters/pstopdf: use the cleaned-up version from Debian.
- CVE-2008-5377
-- Marc Deslauriers <email address hidden> Thu, 08 Jan 2009 10:29:38 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Hardy
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- net
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| cupsys_1.3.7.orig.tar.gz | 4.5 MiB | 7160cb287b515947abaeb048380ee116c14312d51961d5e7b15043a7d7e304ba |
| cupsys_1.3.7-1ubuntu3.3.diff.gz | 131.3 KiB | be71c188e782adb61a0d5e8fd06fc47f8445a90a0b049d7a1a6b6e095aed6180 |
| cupsys_1.3.7-1ubuntu3.3.dsc | 1.4 KiB | bdff97b492362e62cd46c838e54d37549274a324d50aac9df626ca478172fd7f |
Available diffs
Binary packages built by this source
- cupsys: No summary available for cupsys in ubuntu hardy.
No description available for cupsys in ubuntu hardy.
- cupsys-bsd: No summary available for cupsys-bsd in ubuntu hardy.
No description available for cupsys-bsd in ubuntu hardy.
- cupsys-client: No summary available for cupsys-client in ubuntu hardy.
No description available for cupsys-client in ubuntu hardy.
- cupsys-common: No summary available for cupsys-common in ubuntu hardy.
No description available for cupsys-common in ubuntu hardy.
- libcupsimage2: No summary available for libcupsimage2 in ubuntu hardy.
No description available for libcupsimage2 in ubuntu hardy.
- libcupsimage2-dev: No summary available for libcupsimage2-dev in ubuntu hardy.
No description available for libcupsimage2-dev in ubuntu hardy.
- libcupsys2: No summary available for libcupsys2 in ubuntu hardy.
No description available for libcupsys2 in ubuntu hardy.
- libcupsys2-dev: No summary available for libcupsys2-dev in ubuntu hardy.
No description available for libcupsys2-dev in ubuntu hardy.
