Lucene search

Rockylinux Product ErrataRLSA-2021:4393

HistoryNov 09, 2021 - 9:16 a.m.

cups security and bug fix update

2021-11-0909:16:27

Rockylinux Product Errata

errata.rockylinux.org

cups

security update

bug fix

rocky linux 8

cve-2020-10001

cvss

printing system

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

39.3%

JSON

An update is available for cups.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Common UNIX Printing System (CUPS) provides a portable printing layer for Linux, UNIX, and similar operating systems.

Security Fix(es):

cups: access to uninitialized buffer in ipp.c (CVE-2020-10001)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.5 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
rocky8aarch64cups< 2.2.6-40.el8cups-1:2.2.6-40.el8.aarch64.rpm
rocky8x86_64cups< 2.2.6-40.el8cups-1:2.2.6-40.el8.x86_64.rpm
rocky8aarch64cups-client< 2.2.6-40.el8cups-client-1:2.2.6-40.el8.aarch64.rpm
rocky8x86_64cups-client< 2.2.6-40.el8cups-client-1:2.2.6-40.el8.x86_64.rpm
rocky8aarch64cups-client-debuginfo< 2.2.6-40.el8cups-client-debuginfo-1:2.2.6-40.el8.aarch64.rpm
rocky8x86_64cups-client-debuginfo< 2.2.6-40.el8cups-client-debuginfo-1:2.2.6-40.el8.x86_64.rpm
rocky8aarch64cups-debuginfo< 2.2.6-40.el8cups-debuginfo-1:2.2.6-40.el8.aarch64.rpm
rocky8i686cups-debuginfo< 2.2.6-40.el8cups-debuginfo-1:2.2.6-40.el8.i686.rpm
rocky8x86_64cups-debuginfo< 2.2.6-40.el8cups-debuginfo-1:2.2.6-40.el8.x86_64.rpm
rocky8aarch64cups-debugsource< 2.2.6-40.el8cups-debugsource-1:2.2.6-40.el8.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
rocky	8	aarch64	cups	< 2.2.6-40.el8	cups-1:2.2.6-40.el8.aarch64.rpm
rocky	8	x86_64	cups	< 2.2.6-40.el8	cups-1:2.2.6-40.el8.x86_64.rpm
rocky	8	aarch64	cups-client	< 2.2.6-40.el8	cups-client-1:2.2.6-40.el8.aarch64.rpm
rocky	8	x86_64	cups-client	< 2.2.6-40.el8	cups-client-1:2.2.6-40.el8.x86_64.rpm
rocky	8	aarch64	cups-client-debuginfo	< 2.2.6-40.el8	cups-client-debuginfo-1:2.2.6-40.el8.aarch64.rpm
rocky	8	x86_64	cups-client-debuginfo	< 2.2.6-40.el8	cups-client-debuginfo-1:2.2.6-40.el8.x86_64.rpm
rocky	8	aarch64	cups-debuginfo	< 2.2.6-40.el8	cups-debuginfo-1:2.2.6-40.el8.aarch64.rpm
rocky	8	i686	cups-debuginfo	< 2.2.6-40.el8	cups-debuginfo-1:2.2.6-40.el8.i686.rpm
rocky	8	x86_64	cups-debuginfo	< 2.2.6-40.el8	cups-debuginfo-1:2.2.6-40.el8.x86_64.rpm
rocky	8	aarch64	cups-debugsource	< 2.2.6-40.el8	cups-debugsource-1:2.2.6-40.el8.aarch64.rpm