Summary: | <net-print/cups-2.2.13: ippSetValuetag function does not validate the default language value (CVE-2019-2228) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Lars Wendler (Polynomial-C) (RETIRED) <polynomial-c> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | printing |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/apple/cups/releases/tag/v2.2.13 | ||
Whiteboard: | B4 [noglsa] | ||
Package list: |
net-print/cups-2.2.13
|
Runtime testing required: | --- |
Description
Lars Wendler (Polynomial-C) (RETIRED)
2019-12-14 11:20:58 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=16b21623f1919a44dd48a7aa49271fd2b0260cb0 commit 16b21623f1919a44dd48a7aa49271fd2b0260cb0 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2019-12-14 11:26:26 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2019-12-14 11:26:47 +0000 net-print/cups: Security bump to versions 2.2.13 and 2.3.1 CVE-2019-2228 Bug: https://bugs.gentoo.org/702826 Package-Manager: Portage-2.3.81, Repoman-2.3.20 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-print/cups/Manifest | 2 + net-print/cups/cups-2.2.13.ebuild | 339 ++++++++++++++++++++++++++++++++++++++ net-print/cups/cups-2.3.1.ebuild | 336 +++++++++++++++++++++++++++++++++++++ 3 files changed, 677 insertions(+) amd64 stable x86 stable arm stable arm64 stable ia64 stable hppa/sparc stable ppc stable ppc64 stable s390 stable @maintainer(s), ok to cleanup? The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b3fc237966c64e2609473a403bfe4f6233314a03 commit b3fc237966c64e2609473a403bfe4f6233314a03 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-03-15 10:06:13 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-03-15 10:06:13 +0000 net-print/cups: Security cleanup Bug: https://bugs.gentoo.org/702826 Package-Manager: Portage-2.3.93, Repoman-2.3.20 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-print/cups/Manifest | 2 - net-print/cups/cups-2.2.12.ebuild | 339 -------------------------------------- net-print/cups/cups-2.3.0.ebuild | 336 ------------------------------------- 3 files changed, 677 deletions(-) GLSA Vote: No Repository is clean, all done! |