From fc35afb36c8162cb44fa7d9b72b8e3bed0cfe491 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Tue, 28 Apr 2020 20:18:40 +0000 Subject: Tue Apr 28 20:18:40 UTC 2020 ap/cups-2.3.3-x86_64-1.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) l/imagemagick-7.0.10_10-x86_64-1.txz: Upgraded. n/samba-4.12.2-x86_64-1.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) --- testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txt | 11 ----------- testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txt | 11 +++++++++++ testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txt | 11 ----------- testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txt | 11 +++++++++++ 4 files changed, 22 insertions(+), 22 deletions(-) delete mode 100644 testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txt create mode 100644 testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txt delete mode 100644 testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txt create mode 100644 testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txt (limited to 'testing') diff --git a/testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txt b/testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txt deleted file mode 100644 index f581115e7..000000000 --- a/testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txt +++ /dev/null @@ -1,11 +0,0 @@ -cups: cups (Common UNIX Printing System) -cups: -cups: The Common UNIX Printing System provides a portable printing layer for -cups: UNIX(R)-like operating systems. It has been developed by Easy Software -cups: Products to promote a standard printing solution for all UNIX vendors -cups: and users. CUPS uses the Internet Printing Protocol ("IPP") as the -cups: basis for managing print jobs and queues. The CUPS package includes -cups: System V and Berkeley command-line interfaces, a PostScript RIP -cups: package for supporting non-PostScript printer drivers, and tools for -cups: creating additional printer drivers and other CUPS services. -cups: diff --git a/testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txt b/testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txt new file mode 100644 index 000000000..f581115e7 --- /dev/null +++ b/testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txt @@ -0,0 +1,11 @@ +cups: cups (Common UNIX Printing System) +cups: +cups: The Common UNIX Printing System provides a portable printing layer for +cups: UNIX(R)-like operating systems. It has been developed by Easy Software +cups: Products to promote a standard printing solution for all UNIX vendors +cups: and users. CUPS uses the Internet Printing Protocol ("IPP") as the +cups: basis for managing print jobs and queues. The CUPS package includes +cups: System V and Berkeley command-line interfaces, a PostScript RIP +cups: package for supporting non-PostScript printer drivers, and tools for +cups: creating additional printer drivers and other CUPS services. +cups: diff --git a/testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txt b/testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txt deleted file mode 100644 index e1800f156..000000000 --- a/testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txt +++ /dev/null @@ -1,11 +0,0 @@ -samba: samba (CIFS file and print server) -samba: -samba: Samba is a CIFS file and print server for CIFS clients. It allows -samba: you to make file space or printers on a Samba host available to CIFS -samba: clients (such as PCs running Windows). -samba: -samba: If you have any Windows file servers, you may be able to replace them -samba: or supplement them with Samba. One of Samba's big strengths is -samba: integration, so you can use it to tie together your Linux hosts and -samba: Windows PC clients. -samba: diff --git a/testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txt b/testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txt new file mode 100644 index 000000000..e1800f156 --- /dev/null +++ b/testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txt @@ -0,0 +1,11 @@ +samba: samba (CIFS file and print server) +samba: +samba: Samba is a CIFS file and print server for CIFS clients. It allows +samba: you to make file space or printers on a Samba host available to CIFS +samba: clients (such as PCs running Windows). +samba: +samba: If you have any Windows file servers, you may be able to replace them +samba: or supplement them with Samba. One of Samba's big strengths is +samba: integration, so you can use it to tie together your Linux hosts and +samba: Windows PC clients. +samba: -- cgit v1.2.3