ELSA-2007-1020

Описание

[1.2.4-11.14.el5_1.1]

• Applied patch to fix CVE-2007-4351 (STR #2561, bug #353981).

[1.2.4-11.14]

• Applied patch to fix cupsd crash when failing to open a file: URI (STR #2351, bug #250415).

[1.2.4-11.13]

• Moved LSPP security attributes check before job creation (bug #231522).

[1.2.4-11.12]

• Moved LSPP access check before job creation (bug #231522).

[1.2.4-11.11]

• Better error checking in the LSPP patch (bug #231522).

[1.2.4-11.10]

• Applied patch to fix CVE-2007-3387 (bug #248223).

[1.2.4-11.9]

• Fixed IPv6 address parsing (bug #241400, STR #2117).
• Fixed a bug that caused cups-lpd not to set the correct value for job-originating-host-name (bug #240223, STR #2023).
• Cleaned up initscript error handling (bug #237953).
• Fixed cups-lpd -odocument-format=... option (bug #230073, STR #2266).
• Fixed If-Modified-Since: handling in libcups (bug #218764, STR #2133).
• Make the initscript use start priority 56 (bug #213828).

[1.2.4-11.8]

• Applied fix for STR #2264 (bug #230118).
• Added patch for UNIX domain sockets authentication (bug #230613).
• LSPP: Updated patch for line-wrapped labels (bug #228107).

[1.2.4-11.7]

• Don't reload CUPS after rotating the logs with logrotate, but make sure to use the new file in that case (bug #215024).

[1.2.4-11.6]

• LSPP: added check_context() function for get_jobs(), get_job_attrs() and validate_user() (bug #229673).
• Fixed a potential scheduler crash (bug #231522).