Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian: DLA-1387-1 Critical: CUPS Server Crash Due To Invalid Username

debian lts
Calendar Grey May 26, 2018
Dist Debian Esm H88
Debian LTS security update DLA-1388-1 for OpenSSL fixes a vital vulnerability that allows remote data leakage via erroneous certificates.
CVE-2017-18248 It was found that by submitting a print job with an invalid username, the CUPS server can be crashed, when D-Bus support is enabled (which

Summary


For Debian 7 "Wheezy", these problems have been fixed in version
1.5.3-5+deb7u8.

We recommend that you upgrade your cups packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Severity
critical
Lowest
Low
Medium
High
Critical

Package: cups
Version: 1.5.3-5+deb7u8
CVE ID: CVE-2017-18248

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here