Bug#903605: cups: CVE-2018-6553

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#903605: cups: CVE-2018-6553
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 11 Jul 2018 21:14:27 +0200
Message-id: <[🔎] 153133646795.28708.13485851487181769478.reportbug@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 903605@bugs.debian.org

Source: cups
Version: 2.2.1-8
Severity: serious
Tags: patch security
Control: fixed -1 2.2.1-8+deb9u2

Hi,

I'm filling this with severity serious, as it indicates a regression
from stable, given the issue was fixed already via DSA-4243-1 in
2.2.1-8+deb9u2.

CVE-2018-6553[0]:
AppArmor profile issue in cups

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-6553
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6553
[1] https://usn.ubuntu.com/usn/usn-3713-1
[2] https://lists.debian.org/debian-security-announce/2018/msg00172.html

Regards,
Salvatore

Reply to:

Follow-Ups:
- Processed: cups: CVE-2018-6553
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>
- Bug#903605: marked as done (cups: CVE-2018-6553)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Prev by Date: Processed: cups: CVE-2018-6553
Next by Date: cups-filters 1.20.4 released!
Previous by thread: cups_2.2.1-8+deb9u2_amd64.changes ACCEPTED into proposed-updates->stable-new
Next by thread: Processed: cups: CVE-2018-6553
Index(es):
- Date
- Thread