Univention Bugzilla – Bug 56244
cups: Multiple issues (5.0)
Last modified: 2023-07-12 13:57:23 CEST
New Debian cups 2.2.10-6+deb10u8A~5.0.4.202307030913 fixes: This update addresses the following issue: 2.2.10-6+deb10u8 (Thu, 29 Jun 2023 23:30:27 +0200) * CVE-2023-34241 use-after-free in cupsdAcceptClient()
--- mirror/ftp/pool/main/c/cups/cups_2.2.10-6+deb10u7A~5.0.3.202306050937.dsc +++ apt/ucs_5.0-0-errata5.0-4/source/cups_2.2.10-6+deb10u8A~5.0.4.202307030913.dsc @@ -1,4 +1,4 @@ -2.2.10-6+deb10u7A~5.0.3.202306050937 [Mon, 05 Jun 2023 09:38:07 +0200] Univention builddaemon <buildd@univention.de>: +2.2.10-6+deb10u8A~5.0.4.202307030913 [Mon, 03 Jul 2023 09:22:24 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 01-do-not-set-auth-info-automatically.quilt @@ -9,6 +9,11 @@ 20_no-on-demand-systemd-service.quilt 25-true-is-case-sensitive-in-ppds.quilt +2.2.10-6+deb10u8 [Thu, 29 Jun 2023 23:30:27 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * CVE-2023-34241 + use-after-free in cupsdAcceptClient() + 2.2.10-6+deb10u7 [Wed, 31 May 2023 21:30:27 +0200] Thorsten Alteholz <debian@alteholz.de>: * CVE-2023-32324 <http://piuparts.knut.univention.de/5.0-4/#9074788417986587156>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-4] ef3816e1dc Bug #56244: cups 2.2.10-6+deb10u8A~5.0.4.202307030913 doc/errata/staging/cups.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x728>