Synopsis: Moderate: cups security and bug fix update
Advisory ID: SLSA-2020:3864-1
Issue Date: 2020-10-01
CVE Numbers: CVE-2019-8675
CVE-2017-18190
CVE-2019-8696
—
Security Fix(es):
* cups: DNS rebinding attacks via incorrect whitelist (CVE-2017-18190)
* cups: stack-buffer-overflow in libcups’s asn1_get_type function
(CVE-2019-8675)
* cups: stack-buffer-overflow in libcups’s asn1_get_packed function
(CVE-2019-8696)
—
SL7
x86_64
cups-libs-1.6.3-51.el7.i686.rpm
cups-client-1.6.3-51.el7.x86_64.rpm
cups-devel-1.6.3-51.el7.i686.rpm
cups-libs-1.6.3-51.el7.x86_64.rpm
cups-1.6.3-51.el7.x86_64.rpm
cups-filesystem-1.6.3-51.el7.noarch.rpm
cups-lpd-1.6.3-51.el7.x86_64.rpm
cups-devel-1.6.3-51.el7.x86_64.rpm
cups-debuginfo-1.6.3-51.el7.i686.rpm
cups-debuginfo-1.6.3-51.el7.x86_64.rpm
cups-ipptool-1.6.3-51.el7.x86_64.rpm
noarch
cups-filesystem-1.6.3-51.el7.noarch.rpm
– Scientific Linux Development Team
