-
cups (2.2.7-1ubuntu2.10) bionic-security; urgency=medium
* SECURITY UPDATE: DoS via buffer overflow in format_log_line
- debian/patches/CVE-2023-32324.patch: check _cups_strlcpy size in
cups/string.c.
- CVE-2023-32324
-- Marc Deslauriers <email address hidden> Thu, 25 May 2023 08:44:11 -0400
-
cups (2.2.7-1ubuntu2.9) bionic-security; urgency=medium
* SECURITY UPDATE: buffer overflow in ippReadIO
- debian/patches/CVE-2019-8842.patch: fix check in cups/ipp.c.
- CVE-2019-8842
* SECURITY UPDATE: buffer overflow in ippReadIO
- debian/patches/CVE-2020-10001.patch: fix bounds checks in cups/ipp.c.
- CVE-2020-10001
* SECURITY UPDATE: Local authorization cert bypass
- debian/patches/CVE-2022-26691-1.patch: fix string comparison in
scheduler/cert.c.
- debian/patches/CVE-2022-26691-2.patch: fix the comment in
scheduler/cert.c.
- CVE-2022-26691
-- Marc Deslauriers <email address hidden> Fri, 27 May 2022 11:03:33 -0400
-
cups (2.2.7-1ubuntu2.8) bionic-security; urgency=medium
* SECURITY UPDATE: information disclosure via OOB read
- debian/patches/CVE-2019-2228.patch: fix ippSetValueTag validation of
default language in cups/ipp.c.
- CVE-2019-2228
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2020-3898.patch: properly handle invalid
resolution names in cups/ppd.c, ppdc/ppdc-source.cxx.
- CVE-2020-3898
-- Marc Deslauriers <email address hidden> Fri, 24 Apr 2020 10:42:08 -0400
-
cups (2.2.7-1ubuntu2.7) bionic-security; urgency=medium
* SECURITY UPDATE: Stack buffer overflow in SNMP ASN.1 decoder
- debian/patches/CVE-2019-86xx.patch: update cups/snmp.c to check for
buffer overflow when decoding various ASN.1 elements.
- CVE-2019-8675
- CVE-2019-8696
* SECURITY UPDATE: Buffer overflow in IPP
- debian/patches/CVE-2019-86xx.patch: update cups/ipp.c to avoid
buffer overflow due to tag type confusion
* SECURITY UPDATE: Denial of service and memory disclosure in scheduler
- debian/patches/CVE-2019-86xx.patch: update scheduler/client.c to
avoid a denial of service and possible memory disclosure if the
client unexpectedly closes the connection
-- Alex Murray <email address hidden> Fri, 16 Aug 2019 16:42:45 +0930
-
cups (2.2.7-1ubuntu2.6) bionic; urgency=medium
* d/p/0045-Fix-an-issue-with-PreserveJobHistory-and-time-values.patch
Fix an issue with `PreserveJobHistory` and time values
(Issue #5538, Closes: #921741, LP: #1747765)
-- Dariusz Gadomski <email address hidden> Thu, 30 May 2019 10:02:17 +0200
-
cups (2.2.7-1ubuntu2.5) bionic; urgency=medium
* d/p/systemd-service-for-cupsd-after-sssd.patch: Start cupsd after sssd if
installed (LP: #1822062)
-- Victor Tapia <email address hidden> Wed, 24 Apr 2019 16:58:30 +0200
-
cups (2.2.7-1ubuntu2.4) bionic; urgency=medium
* fix-a-parsing-bug-in-the-new-authentication-code.patch,
fix-cups-auth-find-for-schemes-without-parameters.patch: Backported
authentication fixes from upstream (LP: #1783298).
-- Till Kamppeter <email address hidden> Sun, 3 Mar 2019 12:28:01 +0100
-
cups (2.2.7-1ubuntu2.3) bionic; urgency=medium
* fix-handling-of-MaxJobTime.patch: Fix handling of MaxJobTime 0
(LP: #1804576)
-- Dariusz Gadomski <email address hidden> Wed, 12 Dec 2018 08:31:14 +0100
-
cups (2.2.7-1ubuntu2.2) bionic-security; urgency=medium
* SECURITY UPDATE: predictable session cookies
- debian/patches/CVE-2018-4700.patch: use better seed in cgi-bin/var.c.
- CVE-2018-4700
-- Marc Deslauriers <email address hidden> Fri, 16 Nov 2018 14:05:42 -0500
-
cups (2.2.7-1ubuntu2.1) bionic-security; urgency=medium
* SECURITY UPDATE: privilege escalation in dnssd backend
- debian/patches/CVE-2018-418x.patch: don't allow PassEnv and SetEnv to
override standard variables in man/cups-files.conf.man.in,
man/cupsd.conf.man.in, scheduler/conf.c, test/run-stp-tests.sh.
- CVE-2018-4180
* SECURITY UPDATE: local file read via Include directive
- debian/patches/CVE-2018-418x.patch: remove Include directive handling
in scheduler/conf.c.
- CVE-2018-4181
* SECURITY UPDATE: AppArmor sandbox bypass
- debian/local/apparmor-profile: also confine
/usr/lib/cups/backend/mdns.
- CVE-2018-6553
-- Marc Deslauriers <email address hidden> Fri, 22 Jun 2018 13:36:08 -0400
-
cups (2.2.7-1ubuntu2) bionic; urgency=medium
* Fixed another crash when creating temporary queues for IPP printers
(Issue #5290, LP: #1762476).
-- Till Kamppeter <email address hidden> Mon, 9 Apr 2018 21:44:01 +0200
-
cups (2.2.7-1ubuntu1) bionic; urgency=medium
* Reverted the upstrem changes for deprecation of raw queues
- This changes the behavior of CUPS (warnings, error_log entries) and
is not a bug fix, so not adequate for Bionic in this stage.
- It breaks the autopkgtest of the CUPS package.
-- Till Kamppeter <email address hidden> Thu, 29 Mar 2018 15:13:01 +0200
-
cups (2.2.7-1) unstable; urgency=medium
* New 2.2.7 upstream release
- NOTICE: Raw print queues are now deprecated (Issue #5269)
- Fixed an Avahi crash bug in the scheduler (Issue #5268, LP: #1725749)
- Systemd did not restart cupsd when configuration changes were made that
required a restart (Issue #5263. Closes: #861470)
- The scheduler could crash while adding an IPP Everywhere printer (Issue
#5258, LP: #1750514)
- The `lp` and `lpr` commands now provide better error messages when the
default printer cannot be found (Issue #5096, Closes: #870463)
* Add cupsHashString@Base 2.2.7 symbol
* Add lintian override for cups.service WantedBy=printer.target
-- Didier Raboud <email address hidden> Tue, 27 Mar 2018 19:45:49 +0200
-
cups (2.2.6-5) unstable; urgency=medium
* Bump S-V to 4.1.3 without changes needed
* Update Vcs-* fields for the move to salsa.d.o
-- Didier Raboud <email address hidden> Sat, 10 Feb 2018 11:14:39 +0100
-
cups (2.2.6-4) unstable; urgency=medium
* Fix CI: indexv[3,4] Braille drivers cannot print PDF
-- Didier Raboud <email address hidden> Sun, 31 Dec 2017 11:35:12 +0100
-
cups (2.2.6-3) unstable; urgency=medium
[ Helge Kreutzmann ]
* Update German man page translations
[ Didier Raboud ]
* Bump S-V to 4.1.2 without changes needed
* Remove trailing whitespace in d/control and d/changelog
* Drop duplicate priority field for cups-bsd
-- Didier Raboud <email address hidden> Mon, 18 Dec 2017 21:52:25 +0100
-
cups (2.2.6-2) unstable; urgency=medium
* Backport upstream patch from the 2.3 branch:
- The `lp` and `lpr` commands now provide better error messages when the
default printer cannot be found (Issue #5096, Closes: #870463)
* On the repository: reduce the diff to the upstream tarball to zero to
allow uploads with dgit.
-- Didier Raboud <email address hidden> Fri, 03 Nov 2017 12:55:53 +0100
-
cups (2.2.6-1) unstable; urgency=medium
* New 2.2.6 upstream release
- DBUS notifications could crash the scheduler (Issue #5143)
- Added USB quirks rules for Canon MP540 and Samsung ML-2160 (Issue #5148)
- Localization updates (Issue #5152)
* Update manpage translations
* Fix DEB_HOST_ARCH_OS dpkg-architecture variable setting
* Move source local-options to options
-- Didier Raboud <email address hidden> Thu, 02 Nov 2017 17:54:53 +0100
-
cups (2.2.5-2) unstable; urgency=medium
[ Helge Kreutzmann ]
* Update German man page translations
-- Didier Raboud <email address hidden> Tue, 17 Oct 2017 08:43:33 +0200
-
cups (2.2.4-7ubuntu2) artful; urgency=medium
* test-drivers script of autopkgtest: Skip also gen-ubrl.ppd as it is also a
test/debug PPD for Braille embossers which does not accept PDF as
input format. This broke the test with cups-filters 1.17.6 and later.
-- Till Kamppeter <email address hidden> Mon, 26 Sep 2017 09:26:01 -0400
