[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-15400/cups
Salvatore Bonaccorso
carnil at debian.org
Thu Feb 22 20:43:08 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fc4c54cb by Salvatore Bonaccorso at 2018-02-22T21:42:37+01:00
Add CVE-2017-15400/cups
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24453,7 +24453,12 @@ CVE-2017-15402
CVE-2017-15401
RESERVED
CVE-2017-15400 (Insufficient restriction of IPP filters in CUPS in Google Chrome OS ...)
- TODO: check
+ - cups 2.2.3-2
+ NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=777215
+ NOTE: Patches from upstream to restrict what filters will be accpeted
+ NOTE: https://github.com/apple/cups/commit/07428f6a640ff93aa0b4cc69ca372e2cf8490e41 (v2.2.2)
+ NOTE: https://github.com/apple/cups/commit/1add23375658e9163e5493ee19de7c9f7a9b483b (v2.2.2)
+ TODO: double-check
CVE-2017-15399
RESERVED
{DSA-4024-1}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fc4c54cb3ef14f7fd9d1f0a71216c4ec21d1c0b7
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fc4c54cb3ef14f7fd9d1f0a71216c4ec21d1c0b7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180222/ada60989/attachment.html>
More information about the Secure-testing-commits
mailing list