Ubuntu
cupsys package

cupsys 1.3.2-1ubuntu7.9 source package in Ubuntu

Changelog

cupsys (1.3.2-1ubuntu7.9) gutsy-security; urgency=low

  * SECURITY UPDATE: denial of service by adding a large number of RSS
    subscriptions (LP: #298241)
    - debian/patches/81_CVE-2008-5183.dpatch: gracefully handle MaxSubscriptions
      being reached in scheduler/{ipp.c,subscriptions.c}.
    - CVE-2008-5183
  * SECURITY UPDATE: unauthorized access to RSS subscription functions in
    web interface (LP: #298241)
    - debian/patches/82_CVE-2008-5184.dpatch: make sure user is authenticated
      in /cgi-bin/admin.c.
    - CVE-2008-5184
  * SECURITY UPDATE: arbitrary code execution via integer overflow from a PNG
    image with a large height value
    - This issue was introduced in the patch for CVE-2008-1722.
    - debian/patches/77_CVE-2008-1722.dpatch: adjust patch to multiply img->xsize
      instead of img->ysize so we don't overflow in filter/image-png.c.
    - CVE-2008-5286
  * SECURITY UPDATE: arbitrary file overwrite via temp log file symlink attack
    - debian/filters/pstopdf: use the cleaned-up version from Debian.
    - CVE-2008-5377

 -- Marc Deslauriers <email address hidden>   Thu, 08 Jan 2009 10:28:34 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Gutsy
Original maintainer:
Ubuntu Development Team
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
cupsys_1.3.2.orig.tar.gz 4.6 MiB 42a590d1ecb9e1b3bfb2e0dbc6a61b12376bf8b1bf8096739124fb64ca055d07
cupsys_1.3.2-1ubuntu7.9.diff.gz 126.7 KiB eafd59fd0c8b020e5d6e1c098d9cf3e4b28afc758aa344bb9e5fdeeb74503192
cupsys_1.3.2-1ubuntu7.9.dsc 1.2 KiB abf623dadadb8de8598edd4e1bdd6c7eda248e85e18508b83f23742b89e9d5a1

View changes file

Binary packages built by this source

cupsys: No summary available for cupsys in ubuntu gutsy.

No description available for cupsys in ubuntu gutsy.

cupsys-bsd: No summary available for cupsys-bsd in ubuntu gutsy.

No description available for cupsys-bsd in ubuntu gutsy.

cupsys-client: No summary available for cupsys-client in ubuntu gutsy.

No description available for cupsys-client in ubuntu gutsy.

cupsys-common: No summary available for cupsys-common in ubuntu gutsy.

No description available for cupsys-common in ubuntu gutsy.

libcupsimage2: No summary available for libcupsimage2 in ubuntu gutsy.

No description available for libcupsimage2 in ubuntu gutsy.

libcupsimage2-dev: No summary available for libcupsimage2-dev in ubuntu gutsy.

No description available for libcupsimage2-dev in ubuntu gutsy.

libcupsys2: No summary available for libcupsys2 in ubuntu gutsy.

No description available for libcupsys2 in ubuntu gutsy.

libcupsys2-dev: No summary available for libcupsys2-dev in ubuntu gutsy.

No description available for libcupsys2-dev in ubuntu gutsy.