Comment 3 for bug 11421
Revision history for this message
|
|
#3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Hi,
At Thu, 23 Dec 2004 14:02:01 +0100,
Martin Pitt wrote:
> Package: cupsys
> Version: 1.1.20final+rc1-10
> Severity: critical
> Tags: security patch
> Justification: root security hole
>
> Recently CAN-2004-1125 has been discovered in xpdf. Since CUPS
> contains verbatim xpdf code (sigh), this package is affected as well.
> In addition, there are four additional CANs which were recently
> discovered by some students of D. J. Bernstein, which concern the HPGL
> input driver and lppasswd.
Thanks for your effort.
But current cupsys in sid, 1.1.22-2 is same as upstream 1.1.23rc1.
Is this new version really affected?
Thanks,
--
Kenshi Muto
<email address hidden>