[ubuntu/jammy-security] cups 2.4.1op1-1ubuntu4.9 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Mon Jun 24 10:18:53 UTC 2024
cups (2.4.1op1-1ubuntu4.9) jammy-security; urgency=medium
* SECURITY UPDATE: cupsd listen arbitrary chmod 0140777
- debian/patches/CVE-2024-35235.patch: validate status of unlink and bind
in cups/http-addr.c
- CVE-2024-35235
cups (2.4.1op1-1ubuntu4.8) jammy; urgency=medium
* The "lpoptions" utility, when run as root was writing into the file
/root/.cups/lpoptions instread of /etc/cups/lpoptions. System software
should never write into /root/ (LP: #2052925).
Date: 2024-06-21 05:25:09.832634+00:00
Changed-By: Sudhakar Verma <sudhakar.verma at canonical.com>
Signed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/cups/2.4.1op1-1ubuntu4.9
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list