drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in CUPS (Aktualisierung)
| Name: |
Mehrere Probleme in CUPS (Aktualisierung) |
|
| ID: |
USN-5454-2 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 16.04 ESM |
|
| Datum: |
Mi, 1. Juni 2022, 06:31 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26691
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10001
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 |
|
| Applikationen: |
Common UNIX Printing System |
|
| Update von: |
Mehrere Probleme in CUPS |
|
Originalnachricht |
--===============9134694184920436523==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="mYCpIKhGyMATD0i+"
Content-Disposition: inline
--mYCpIKhGyMATD0i+
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-5454-2
May 31, 2022
cups vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 ESM
Summary:
Several security issues were fixed in CUPS.
Software Description:
- cups: Common UNIX Printing System(tm)
Details:
USN-5454-1 fixed several vulnerabilities in CUPS. This update provides
the corresponding update for Ubuntu 16.04 ESM.
Original advisory details:
Joshua Mason discovered that CUPS incorrectly handled the secret key used
to access the administrative web interface. A remote attacker could
possibly use this issue to open a session as an administrator and execute
arbitrary code. (CVE-2022-26691)
It was discovered that CUPS incorrectly handled certain memory operations
when handling IPP printing. A remote attacker could possibly use this issue
to cause CUPS to crash, leading to a denial of service, or obtain sensitive
information. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04
LTS. (CVE-2019-8842, CVE-2020-10001)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 16.04 ESM:
cups 2.1.3-4ubuntu0.11+esm1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5454-2
https://ubuntu.com/security/notices/USN-5454-1
CVE-2019-8842, CVE-2020-10001, CVE-2022-26691
--mYCpIKhGyMATD0i+
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=L04g
-----END PGP SIGNATURE-----
--mYCpIKhGyMATD0i+--
--===============9134694184920436523==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--===============9134694184920436523==--
|
|
|
|
