Didier 'OdyX' Raboud
2019-12-31 13:30:01 UTC
Package: release.debian.org
Severity: normal
Tags: buster
User: ***@packages.debian.org
Usertags: pu
Dear Stable Release Team,
CVE-2019-2228 affects stable's cups (see #946782); and I'd also like to fix
another memory leak (#946941).
My proposed changelog would be:
cups (2.2.10-6+deb10u2) buster; urgency=medium
* Backport upstream security fixes:
- Fix memory leak in ppdOpen (Closes: #946941)
- CVE-2019-2228: The `ippSetValuetag` function did not validate the
default language value (Closes: #946782)
-- Didier Raboud <***@debian.org> Tue, 31 Dec 2019 14:16:46 +0100
⊠the proposed debdiff is attached.
Cheers,
OdyX
Severity: normal
Tags: buster
User: ***@packages.debian.org
Usertags: pu
Dear Stable Release Team,
CVE-2019-2228 affects stable's cups (see #946782); and I'd also like to fix
another memory leak (#946941).
My proposed changelog would be:
cups (2.2.10-6+deb10u2) buster; urgency=medium
* Backport upstream security fixes:
- Fix memory leak in ppdOpen (Closes: #946941)
- CVE-2019-2228: The `ippSetValuetag` function did not validate the
default language value (Closes: #946782)
-- Didier Raboud <***@debian.org> Tue, 31 Dec 2019 14:16:46 +0100
⊠the proposed debdiff is attached.
Cheers,
OdyX