FreezeException for cups (CVE-2009-0163)
Bug #361866 reported by
Jamie Strandboge
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cups (Ubuntu) |
Fix Released
|
Medium
|
Jamie Strandboge | ||
Jaunty |
Fix Released
|
Medium
|
Jamie Strandboge |
Bug Description
Binary package hint: cups
On 2009-04-16 a new CUPS version (1.3.10) will be released addressing CVE-2009-0163. Attached is the debdiff for what I plan to upload.
Please note that CVE-2009-0166, CVE-2009-0146, and CVE-2009-0147 do not affect Ubuntu because we use the system pdftops (will be fixed via separate update) and we are deferring CVE-2009-0164 due to a high potential of regression (it can be revisited once 1.3.10 is in Karmic).
Please consider all of these issues embargoed and therefore not public until 1.3.10 is released (April 16th, 2009).
Related branches
CVE References
summary: |
- FFe for cups (CVE-2009-0163) + FreezeException for cups (CVE-2009-0163) |
Changed in cups (Ubuntu): | |
assignee: | nobody → jdstrand |
importance: | Undecided → Medium |
status: | New → Fix Committed |
status: | Fix Committed → In Progress |
visibility: | private → public |
To post a comment you must log in.
Packages build and the built-in test suite passes. There are no ABI differences. I'll comment further when I'm finished with the qa-regression- testing testing.