ELSA-2020-1765

ELSA-2020-1765 - cups security and bug fix update

Type:SECURITY
Severity:LOW
Release Date:2020-05-05

Description


[1:2.2.6-33]
- fix more memory leaks found by coverity in 1775668

[1:2.2.6-32]
- fix covscan issues raised by 1775668

[1:2.2.6-31]
- 1775668 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created

[1:2.2.6-30]
- 1774462 - CVE-2019-8675 - buffer overflow in SNMP and IPP, memory disclosure and DoS in scheduler
- 1774463 - CVE-2019-8696

[1:2.2.6-29]
- 1700663 - Stop advertising the HTTP methods that are supported


Related CVEs


CVE-2019-8696
CVE-2019-8675

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) cups-2.2.6-33.el8.src.rpm69011f306c9e920995818d6d768cf066-
cups-2.2.6-33.el8.aarch64.rpm7626c5f5e745e35daf3cc24504d1899b-
cups-client-2.2.6-33.el8.aarch64.rpmd90aefd9a6049295a3d86886f01fb75a-
cups-devel-2.2.6-33.el8.aarch64.rpm2849ef6da6cd7c13c8bfb2fc9e03e34a-
cups-filesystem-2.2.6-33.el8.noarch.rpm066533e5f85500b8fdf4a29cc42c369e-
cups-ipptool-2.2.6-33.el8.aarch64.rpm2e5d118018fb18bd4c5d8415340c64b7-
cups-libs-2.2.6-33.el8.aarch64.rpm1e95934b187e4cfa5631b3707a96c8f5-
cups-lpd-2.2.6-33.el8.aarch64.rpmfe8bbe11d2c18d441d37959fbe75e078-
Oracle Linux 8 (x86_64) cups-2.2.6-33.el8.src.rpm69011f306c9e920995818d6d768cf066-
cups-2.2.6-33.el8.x86_64.rpmff944f33e5e2732dbe7a1deee3459300-
cups-client-2.2.6-33.el8.x86_64.rpm0e95f70332e221016437d37820eef1fa-
cups-devel-2.2.6-33.el8.i686.rpm4f296a625b3587b78b38c267cde172d2-
cups-devel-2.2.6-33.el8.x86_64.rpm5881c9f70c1c6f51052354f4631199cb-
cups-filesystem-2.2.6-33.el8.noarch.rpm066533e5f85500b8fdf4a29cc42c369e-
cups-ipptool-2.2.6-33.el8.x86_64.rpm2dcf4f30c6d5a355ccec54e02e3c18df-
cups-libs-2.2.6-33.el8.i686.rpmb982ade204e62c0d936d854a6fcc54dd-
cups-libs-2.2.6-33.el8.x86_64.rpmb34d2e401894bdec90dd252611dc87c1-
cups-lpd-2.2.6-33.el8.x86_64.rpm47528cde6241bbaa6a32d5b7f24a72fd-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete