Описание
Security update for cups
This update for cups fixes the following issues:
The following security vulnerabilities were fixed:
- Fixed a local privilege escalation to root and sandbox bypasses in the scheduler
- CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend (bsc#1096405)
- CVE-2018-4181: Limited local file reads as root via cupsd.conf include directive (bsc#1096406)
- CVE-2018-4182: Fixed a sandbox bypass due to insecure error handling (bsc#1096407)
- CVE-2018-4183: Fixed a sandbox bypass due to profile misconfiguration (bsc#1096408)
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
cups-2.2.7-lp150.2.3.1
cups-client-2.2.7-lp150.2.3.1
cups-config-2.2.7-lp150.2.3.1
cups-ddk-2.2.7-lp150.2.3.1
cups-devel-2.2.7-lp150.2.3.1
cups-devel-32bit-2.2.7-lp150.2.3.1
libcups2-2.2.7-lp150.2.3.1
libcups2-32bit-2.2.7-lp150.2.3.1
libcupscgi1-2.2.7-lp150.2.3.1
libcupscgi1-32bit-2.2.7-lp150.2.3.1
libcupsimage2-2.2.7-lp150.2.3.1
libcupsimage2-32bit-2.2.7-lp150.2.3.1
libcupsmime1-2.2.7-lp150.2.3.1
libcupsmime1-32bit-2.2.7-lp150.2.3.1
libcupsppdc1-2.2.7-lp150.2.3.1
libcupsppdc1-32bit-2.2.7-lp150.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2018:2292-1
- SUSE Security Ratings
Описание
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
Затронутые продукты
openSUSE Leap 15.0:cups-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-client-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-config-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-ddk-2.2.7-lp150.2.3.1
Ссылки
- CVE-2018-4180
- SUSE Bug 1096405
- SUSE Bug 1096408
Описание
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
Затронутые продукты
openSUSE Leap 15.0:cups-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-client-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-config-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-ddk-2.2.7-lp150.2.3.1
Ссылки
- CVE-2018-4181
- SUSE Bug 1096406
- SUSE Bug 1096408
Описание
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.
Затронутые продукты
openSUSE Leap 15.0:cups-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-client-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-config-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-ddk-2.2.7-lp150.2.3.1
Ссылки
- CVE-2018-4182
- SUSE Bug 1096407
- SUSE Bug 1096408
Описание
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
Затронутые продукты
openSUSE Leap 15.0:cups-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-client-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-config-2.2.7-lp150.2.3.1
openSUSE Leap 15.0:cups-ddk-2.2.7-lp150.2.3.1
Ссылки
- CVE-2018-4183
- SUSE Bug 1096407
- SUSE Bug 1096408