Описание
Security update for cups
This update for cups fixes the following issues:
The following security vulnerabilities were fixed:
- Fixed a local privilege escalation to root and sandbox bypasses in the scheduler
- CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend (bsc#1096405)
- CVE-2018-4181: Limited local file reads as root via cupsd.conf include directive (bsc#1096406)
- CVE-2018-4182: Fixed a sandbox bypass due to insecure error handling (bsc#1096407)
- CVE-2018-4183: Fixed a sandbox bypass due to profile misconfiguration (bsc#1096408)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
cups-2.2.7-3.3.1
cups-client-2.2.7-3.3.1
cups-config-2.2.7-3.3.1
cups-devel-2.2.7-3.3.1
libcups2-2.2.7-3.3.1
libcupscgi1-2.2.7-3.3.1
libcupsimage2-2.2.7-3.3.1
libcupsmime1-2.2.7-3.3.1
libcupsppdc1-2.2.7-3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15
libcups2-32bit-2.2.7-3.3.1
SUSE Linux Enterprise Module for Development Tools 15
cups-ddk-2.2.7-3.3.1
Ссылки
- Link for SUSE-SU-2018:2172-1
- E-Mail link for SUSE-SU-2018:2172-1
- SUSE Security Ratings
- SUSE Bug 1096405
- SUSE Bug 1096406
- SUSE Bug 1096407
- SUSE Bug 1096408
- SUSE CVE CVE-2018-4180 page
- SUSE CVE CVE-2018-4181 page
- SUSE CVE CVE-2018-4182 page
- SUSE CVE CVE-2018-4183 page
Описание
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:cups-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-client-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-config-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-devel-2.2.7-3.3.1
Ссылки
- CVE-2018-4180
- SUSE Bug 1096405
- SUSE Bug 1096408
Описание
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:cups-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-client-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-config-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-devel-2.2.7-3.3.1
Ссылки
- CVE-2018-4181
- SUSE Bug 1096406
- SUSE Bug 1096408
- SUSE Bug 1105281
Описание
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:cups-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-client-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-config-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-devel-2.2.7-3.3.1
Ссылки
- CVE-2018-4182
- SUSE Bug 1096407
- SUSE Bug 1096408
- SUSE Bug 1105281
- SUSE Bug 1217278
Описание
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:cups-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-client-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-config-2.2.7-3.3.1
SUSE Linux Enterprise Module for Basesystem 15:cups-devel-2.2.7-3.3.1
Ссылки
- CVE-2018-4183
- SUSE Bug 1096407
- SUSE Bug 1096408