* Merge recent bug fixes and security fix from Debian unstable.
cupsys (1.3.6-3) unstable; urgency=high
[ Till Kamppeter ]
* pdftops-cups-1.4.dpatch: Updated to Mike Sweet's patch version from CUPS
STR #2716.
* debian/patches/ppd-poll-with-client-conf.dpatch: If there is a client.conf
pointing to a remote server, clients were not able to poll the PPD options
from printers on that server (CUPS STRs #2731, #2763)
[ Martin Pitt ]
* Urgency high due to security fix.
* debian/local/apparmor-profile: Allow cups-pdf to read files in ~/PDF/, so
that it can overwrite files. (LP: #161222)
* Add cgiCompileSearch_buffer_overflow.dpatch: Fix buffer overflow in
cgiCompileSearch() using crafted search expressions. Exploitable if
printer sharing is enabled. (CVE-2008-0047, STR #2729, Closes: #472105)
-- Martin Pitt <email address hidden> Sat, 22 Mar 2008 12:48:56 +0100
This bug was fixed in the package cupsys - 1.3.6-3ubuntu1
---------------
cupsys (1.3.6-3ubuntu1) hardy; urgency=low
* Merge recent bug fixes and security fix from Debian unstable.
cupsys (1.3.6-3) unstable; urgency=high
[ Till Kamppeter ] cups-1. 4.dpatch: Updated to Mike Sweet's patch version from CUPS patches/ ppd-poll- with-client- conf.dpatch: If there is a client.conf
* pdftops-
STR #2716.
* debian/
pointing to a remote server, clients were not able to poll the PPD options
from printers on that server (CUPS STRs #2731, #2763)
[ Martin Pitt ] local/apparmor- profile: Allow cups-pdf to read files in ~/PDF/, so h_buffer_ overflow. dpatch: Fix buffer overflow in earch() using crafted search expressions. Exploitable if
* Urgency high due to security fix.
* debian/
that it can overwrite files. (LP: #161222)
* Add cgiCompileSearc
cgiCompileS
printer sharing is enabled. (CVE-2008-0047, STR #2729, Closes: #472105)
-- Martin Pitt <email address hidden> Sat, 22 Mar 2008 12:48:56 +0100