Oracle Linux Security Advisory ELSA-2024-4776

http://linux.oracle.com/errata/ELSA-2024-4776.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cups-2.3.3op2-27.el9_4.x86_64.rpm
cups-client-2.3.3op2-27.el9_4.x86_64.rpm
cups-devel-2.3.3op2-27.el9_4.i686.rpm
cups-devel-2.3.3op2-27.el9_4.x86_64.rpm
cups-filesystem-2.3.3op2-27.el9_4.noarch.rpm
cups-ipptool-2.3.3op2-27.el9_4.x86_64.rpm
cups-libs-2.3.3op2-27.el9_4.i686.rpm
cups-libs-2.3.3op2-27.el9_4.x86_64.rpm
cups-lpd-2.3.3op2-27.el9_4.x86_64.rpm
cups-printerapp-2.3.3op2-27.el9_4.x86_64.rpm

aarch64:
cups-2.3.3op2-27.el9_4.aarch64.rpm
cups-client-2.3.3op2-27.el9_4.aarch64.rpm
cups-devel-2.3.3op2-27.el9_4.aarch64.rpm
cups-filesystem-2.3.3op2-27.el9_4.noarch.rpm
cups-ipptool-2.3.3op2-27.el9_4.aarch64.rpm
cups-libs-2.3.3op2-27.el9_4.aarch64.rpm
cups-lpd-2.3.3op2-27.el9_4.aarch64.rpm
cups-printerapp-2.3.3op2-27.el9_4.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//cups-2.3.3op2-27.el9_4.src.rpm

Related CVEs:

CVE-2024-35235




Description of changes:

[1:2.3.3op2-27]
- Revert the cups-libs license identifier to the "legacy" format

[1:2.3.3op2-26]
- RHEL-40388 cups: Cupsd Listen arbitrary chmod 0140777
- Delete the domain socket file after stopping the cups.socket service
- Fix cupsd Listener checks

[1:2.3.3op2-25]
- CVE-2024-35235 cups: Cupsd Listen arbitrary chmod 0140777


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata