Format: 1.7 Date: Fri, 18 Jun 2010 10:32:12 -0400 Source: cupsys Binary: libcupsys2 libcupsimage2 cupsys cupsys-client libcupsys2-dev libcupsimage2-dev cupsys-bsd cupsys-common Architecture: hppa_translations hppa Version: 1.3.7-1ubuntu3.11 Distribution: hardy Urgency: low Maintainer: Ubuntu/hppa Build Daemon Changed-By: Marc Deslauriers Description: cupsys - Common UNIX Printing System(tm) - server cupsys-bsd - Common UNIX Printing System(tm) - BSD commands cupsys-client - Common UNIX Printing System(tm) - client programs (SysV) cupsys-common - Common UNIX Printing System(tm) - common files libcupsimage2 - Common UNIX Printing System(tm) - image libs libcupsimage2-dev - Common UNIX Printing System(tm) - image development files libcupsys2 - Common UNIX Printing System(tm) - libs libcupsys2-dev - Common UNIX Printing System(tm) - development files Changes: cupsys (1.3.7-1ubuntu3.11) hardy-security; urgency=low . * SECURITY UPDATE: cross-site request forgery in admin interface - debian/patches/CVE-2010-0540.dpatch: add unpredictable session token to cgi-bin/admin.c, cgi-bin/cgi.h, cgi-bin/ipp-var.c, cgi-bin/template.c, cgi-bin/var.c, scheduler/client.c, templates/*.tmpl. - CVE-2010-0540 * SECURITY UPDATE: denial of service or arbitrary code execution in texttops image filter - debian/patches/CVE-2010-0542.dpatch: make sure calloc succeeded in filter/texttops.c. - CVE-2010-0542 * SECURITY UPDATE: web interface memory disclosure - debian/patches/CVE-2010-1748.dpatch: validate data in cgi-bin/var.c. - CVE-2010-1748 * SECURITY UPDATE: file overwrite vulnerability - debian/patches/security-str3510.dpatch: introduce cups_open() in cups/file.c and use to make sure hard-linked or symlinked files don't get overwritten as root. - No CVE number Files: 2ba9e62e66b5b007fa2a05bab7d8d46f 757892 raw-translations - cupsys_1.3.7-1ubuntu3.11_hppa_translations.tar.gz b1dc62f9da08444e999e4b7baeb373c7 186734 libs optional libcupsys2_1.3.7-1ubuntu3.11_hppa.deb 1d94100403185ac9447512b5cfc84d5f 54554 libs optional libcupsimage2_1.3.7-1ubuntu3.11_hppa.deb 04548bbe5cb5b89cdc28c4ba935c68c7 1950120 net optional cupsys_1.3.7-1ubuntu3.11_hppa.deb 20d62d3392aaa86089cceda9a8f1b767 93570 net optional cupsys-client_1.3.7-1ubuntu3.11_hppa.deb 84b58632ad9efb87ca61bc3de8d1b3da 355798 libdevel optional libcupsys2-dev_1.3.7-1ubuntu3.11_hppa.deb 21146ba0ebe4ec8f85b873164ac75c1d 63624 libdevel optional libcupsimage2-dev_1.3.7-1ubuntu3.11_hppa.deb 8f934662b65bf5fd930816e7c6c83425 39488 net extra cupsys-bsd_1.3.7-1ubuntu3.11_hppa.deb Original-Maintainer: Debian CUPS Maintainers