Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Ubuntu 14.04 LTS USN-2839-1 Moderate: CUPS SSLv3 Attack Prevention

Calendar Dec 16, 2015 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory SSL support Ubuntu system update CUPS POODLE attack
A security improvement has been made to CUPS. 
=========================================================================Ubuntu Security Notice USN-2839-1
December 16, 2015

cups update
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 LTS

Summary:

A security improvement has been made to CUPS.

Software Description:
- cups: Common UNIX Printing System(tm)

Details:

As a security improvement against the POODLE attack, this update disables
SSLv3 support in the CUPS web interface.

For legacy environments where SSLv3 support is still required, it can be
re-enabled by adding "SSLOptions AllowSSL3" to /etc/cups/cupsd.conf.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  cups                            1.7.2-0ubuntu1.7

In general, a standard system update will make all the necessary changes.

References:
  
  https://bugs.launchpad.net/ubuntu/+source/cups/+bug/1505328

Package Information:
  https://launchpad.net/ubuntu/+source/cups/1.7.2-0ubuntu1.7

Ubuntu 14.04 LTS USN-2839-1 Moderate: CUPS SSLv3 Attack Prevention

ubuntu
Calendar Grey December 16, 2015
Dist Ubuntu Esm H88
Alert announcement USN-2840-1 outlines OpenSSH upgrade for Ubuntu, reinforcing defenses against DROWN attack by turning off SSLv2.
A security improvement has been made to CUPS.

Summary

Topics%20covered

Topics Covered

security advisory SSL support Ubuntu system update CUPS POODLE attack

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: cups 1.7.2-0ubuntu1.7 In general, a standard system update will make all the necessary changes.

References

https://bugs.launchpad.net/ubuntu/+source/cups/+bug/1505328

Severity
important
Lowest
Low
Medium
High
Critical

December 16, 2015

Topics%20covered

Topics Covered

security advisory SSL support Ubuntu system update CUPS POODLE attack

Package Information

https://launchpad.net/ubuntu/+source/cups/1.7.2-0ubuntu1.7

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here