FEDORA-2018-bdc5bfaedc — security update for cups

stable

cups-2.2.6-16.fc28

FEDORA-2018-bdc5bfaedc created by zdohnal 6 years ago for Fedora 28

Security fix for CVE-2018-4180 CVE-2018-4181 CVE-2018-4182 CVE-2018-4183

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-bdc5bfaedc

This update has been submitted for testing by zdohnal.

6 years ago

zdohnal edited this update.

6 years ago

This update has been pushed to testing.

6 years ago

cserpentis commented & provided feedback 6 years ago

karma

works for me

pwalter commented & provided feedback 6 years ago

karma

Works

samoht0 commented & provided feedback 6 years ago

karma

no regressions noted

This update has been submitted for batched by bodhi.

6 years ago

This update has been submitted for stable by bodhi.

6 years ago

This update has been pushed to stable.

6 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

6 years ago

in testing

6 years ago

in stable

6 years ago

modified

6 years ago

Builds

cups-2.2.6-16.fc28

BZ#1607282 CVE-2018-4180 cups: Local privilege escalation to root due to insecure environment variable handling

BZ#1607283 CVE-2018-4182 cups: Sandbox bypass due to insecure error handling

BZ#1607284 CVE-2018-4183 cups: Sandbox bypass due to profile misconfiguration

BZ#1607291 CVE-2018-4181 cups: Manipulation of cupsd.conf by a local attacker resulting in limited reads of arbitrary files as root

BZ#1607293 CVE-2018-4180 CVE-2018-4181 CVE-2018-4182 CVE-2018-4183 cups: various flaws [fedora-all]

cups-2.2.6-16.fc28

Automated Test Results

ignored