drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberlauf in cups
Name: |
Pufferüberlauf in cups |
|
ID: |
FEDORA-2011-11197 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 15 |
|
Datum: |
Sa, 27. August 2011, 18:41 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2896 |
|
Applikationen: |
Common UNIX Printing System |
|
Originalnachricht |
Name : cups Product : Fedora 15 Version : 1.4.8 Release : 2.fc15 URL : http://www.cups.org/ Summary : Common Unix Printing System Description : The Common UNIX Printing System provides a portable printing layer for UNIX® operating systems. It has been developed by Easy Software Products to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces.
------------------------------------------------------------------------------- - Update Information:
This update avoids a GIF reader loop (CVE-2011-2896). ------------------------------------------------------------------------------- - ChangeLog:
* Fri Aug 19 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.8-2 - Avoid GIF reader loop (CVE-2011-2896, STR #3914, bug #727800). * Tue Jul 26 2011 Jiri Popelka <jpopelka@redhat.com> 1:1.4.8-1 - 1.4.8 * Wed Jul 20 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-9 - Don't delete job data files when restarted (STR #3880). * Fri Jul 15 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-8 - Ship an rpm macro for where to put driver executables. * Wed Jul 13 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-7 - Avoid busy loop in cups-polld (bug #720921). * Thu Jul 7 2011 Jiri Popelka <jpopelka@redhat.com> 1:1.4.7-6 - Fix SNMP supply level crasher (STR #3875, bug #719057). * Thu Jul 7 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-5 - Undo last change which had no effect. We already remove the .SILENT target from the Makefile as part of the build. * Thu Jul 7 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-4 - Make build log verbose enough to include compiler flags used. * Wed Jun 29 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-3 - Tag localization files correctly (bug #716421). * Tue Jun 28 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.7-2 - Updated avahi patches. * Tue Jun 28 2011 Jiri Popelka <jpopelka@redhat.com> 1:1.4.7-1 - 1.4.7. * Fri Jun 3 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.6-20 - Use correct port number when publishing services through Avahi (Ubuntu #792309). * Fri Jun 3 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.6-19 - Don't crash when unable to connect to D-Bus. * Fri Jun 3 2011 Jiri Popelka <jpopelka@redhat.com> 1:1.4.6-18 - Set the default RIPCache to 128m (STR #3535, bug #549901). * Wed May 18 2011 Tim Waugh <twaugh@redhat.com> 1:1.4.6-17 - Package parallel port printer device nodes (bug #678804). * Tue May 17 2011 Richard Hughes <rhughes@redhat.com> 1:1.4.6-16 - Updated colord patch from upstream review. ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #727800 - CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=727800 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update cups' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|