Описание
Security update for cups
This update for cups fixes the following issues:
Security issue fixed:
- CVE-2018-4700: Fixed extremely predictable cookie generation that is effectively breaking the CSRF protection of the CUPS web interface (bsc#1115750).
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
cups-2.2.7-3.6.1
cups-client-2.2.7-3.6.1
cups-config-2.2.7-3.6.1
cups-devel-2.2.7-3.6.1
libcups2-2.2.7-3.6.1
libcupscgi1-2.2.7-3.6.1
libcupsimage2-2.2.7-3.6.1
libcupsmime1-2.2.7-3.6.1
libcupsppdc1-2.2.7-3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15
libcups2-32bit-2.2.7-3.6.1
SUSE Linux Enterprise Module for Development Tools 15
cups-ddk-2.2.7-3.6.1
Ссылки
- Link for SUSE-SU-2018:4059-1
- E-Mail link for SUSE-SU-2018:4059-1
- SUSE Security Ratings
- SUSE Bug 1115750
- SUSE CVE CVE-2018-4700 page
Описание
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-4300. Reason: This candidate is a duplicate of CVE-2018-4300. Notes: All CVE users should reference CVE-2018-4300 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:cups-2.2.7-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:cups-client-2.2.7-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:cups-config-2.2.7-3.6.1
SUSE Linux Enterprise Module for Basesystem 15:cups-devel-2.2.7-3.6.1
Ссылки
- CVE-2018-4700
- SUSE Bug 1115750
- SUSE Bug 1131480