cupsys 1.2.2-0ubuntu0.6.06.19 source package in Ubuntu

Changelog

cupsys (1.2.2-0ubuntu0.6.06.19) dapper-security; urgency=low

  * SECURITY UPDATE: cross-site request forgery in admin interface
    - debian/patches/CVE-2010-0540.dpatch: add unpredictable session token
      to cgi-bin/admin.c, cgi-bin/cgi.h, cgi-bin/ipp-var.c,
      cgi-bin/template.c, cgi-bin/var.c, scheduler/client.c,
      templates/*.tmpl.
    - CVE-2010-0540
  * SECURITY UPDATE: denial of service or arbitrary code execution in
    texttops image filter
    - debian/patches/CVE-2010-0542.dpatch: make sure calloc succeeded in
      filter/texttops.c.
    - CVE-2010-0542
  * SECURITY UPDATE: web interface memory disclosure
    - debian/patches/CVE-2010-1748.dpatch: validate data in cgi-bin/var.c.
    - CVE-2010-1748
  * SECURITY UPDATE: file overwrite vulnerability
    - debian/patches/security-str3510.dpatch: introduce cups_open() in
      cups/file.c and use to make sure hard-linked or symlinked files don't
      get overwritten as root.
    - No CVE number
 -- Marc Deslauriers <email address hidden>   Fri, 18 Jun 2010 10:37:35 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Dapper
Original maintainer:
Debian CUPS Maintainers
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
cupsys_1.2.2.orig.tar.gz 3.9 MiB ea70cda45fe16bf04154e316f4ee9b1a44503bb786f6a741e6842658f51068c3
cupsys_1.2.2-0ubuntu0.6.06.19.diff.gz 112.6 KiB 73e08c5570821544539011ebfb7d11fc140e0ec6f2d759c9924a6593f3084542
cupsys_1.2.2-0ubuntu0.6.06.19.dsc 1.0 KiB 892cba8e6d8d0695b7801d3bbb12d0ee307c0d916a08f3bce27f4301dbed247d

View changes file

Binary packages built by this source

cupsys: No summary available for cupsys in ubuntu dapper.

No description available for cupsys in ubuntu dapper.

cupsys-bsd: No summary available for cupsys-bsd in ubuntu dapper.

No description available for cupsys-bsd in ubuntu dapper.

cupsys-client: No summary available for cupsys-client in ubuntu dapper.

No description available for cupsys-client in ubuntu dapper.

libcupsimage2: No summary available for libcupsimage2 in ubuntu dapper.

No description available for libcupsimage2 in ubuntu dapper.

libcupsimage2-dev: No summary available for libcupsimage2-dev in ubuntu dapper.

No description available for libcupsimage2-dev in ubuntu dapper.

libcupsys2: No summary available for libcupsys2 in ubuntu dapper.

No description available for libcupsys2 in ubuntu dapper.

libcupsys2-dev: No summary available for libcupsys2-dev in ubuntu dapper.

No description available for libcupsys2-dev in ubuntu dapper.

libcupsys2-gnutls10: No summary available for libcupsys2-gnutls10 in ubuntu dapper.

No description available for libcupsys2-gnutls10 in ubuntu dapper.