[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-28 Thread Launchpad Bug Tracker
This bug was fixed in the package cups - 2.4.10-1ubuntu2 --- cups (2.4.10-1ubuntu2) oracular; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate URIs, attribute names, and capabilities in cups/ppd-cache.c, sc

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-27 Thread Marc Deslauriers
** Changed in: cups (Ubuntu Oracular) Status: New => Fix Committed ** Changed in: cups (Ubuntu Focal) Assignee: Kevin bush (akjk32002) => (unassigned) ** Changed in: cups (Ubuntu Jammy) Assignee: Kevin bush (akjk32002) => (unassigned) ** Changed in: cups (Ubuntu Noble) Assi

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-27 Thread Launchpad Bug Tracker
This bug was fixed in the package cups-browsed - 2.0.1-0ubuntu2 --- cups-browsed (2.0.1-0ubuntu2) oracular; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: disable legacy CUPS protocol in configure.ac. - CVE-20

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-27 Thread Launchpad Bug Tracker
This bug was fixed in the package libcupsfilters - 2.1~b1-0ubuntu3 --- libcupsfilters (2.1~b1-0ubuntu3) oracular; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate response attributes before return in cupsfi

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-27 Thread Launchpad Bug Tracker
This bug was fixed in the package libppd - 2:2.1~b1-0ubuntu2 --- libppd (2:2.1~b1-0ubuntu2) oracular; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: sanitize and validate IPP values in generated PPD file in ppd/pp

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Kevin bush
** Changed in: cups (Ubuntu Noble) Assignee: (unassigned) => Kevin bush (akjk32002) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2082335 Title: Sept 2024 security issue tracking bug To manage

Re: [Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Kevin bush
😊 Justin reacted via Gmail On Thu, Sep 26, 2024, 4:10 PM Marc Deslauriers <2082...@bugs.launchpad.net> wrote: > ** Information type changed from Private Security to Public Security

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package libcupsfilters - 2.0.0-0ubuntu7.1 --- libcupsfilters (2.0.0-0ubuntu7.1) noble-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate response attributes before return i

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package libppd - 2:2.0.0-0ubuntu4.1 --- libppd (2:2.0.0-0ubuntu4.1) noble-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: sanitize and validate IPP values in generated PPD file i

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups-filters - 1.28.15-0ubuntu1.3 --- cups-filters (1.28.15-0ubuntu1.3) jammy-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate response attributes before return i

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups-filters - 1.27.4-1ubuntu0.3 --- cups-filters (1.27.4-1ubuntu0.3) focal-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate response attributes before return in

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups - 2.3.1-9ubuntu1.9 --- cups (2.3.1-9ubuntu1.9) focal-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate URIs, attribute names, and capabilities in cups/ppd-cac

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups-browsed - 2.0.0-0ubuntu10.1 --- cups-browsed (2.0.0-0ubuntu10.1) noble-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: disable legacy CUPS protocol in configure.ac.

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups - 2.4.7-1.2ubuntu7.3 --- cups (2.4.7-1.2ubuntu7.3) noble-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate URIs, attribute names, and capabilities in cups/ppd

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Launchpad Bug Tracker
This bug was fixed in the package cups - 2.4.1op1-1ubuntu4.11 --- cups (2.4.1op1-1ubuntu4.11) jammy-security; urgency=medium * SECURITY UPDATE: PPD injection issues (LP: #2082335) - debian/patches/sec-202409-1.patch: validate URIs, attribute names, and capabilities in cups

[Bug 2082335] Re: Sept 2024 security issue tracking bug

2024-09-26 Thread Marc Deslauriers
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2082335 Title: Sept 2024 security issue tracking bug To manage notifications about