Bug#1087849: cups: Drop 0013-CVE-2023-32324.patch

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1087849: cups: Drop 0013-CVE-2023-32324.patch
From: Alessandro Astone <alessandro.astone@canonical.com>
Date: Tue, 19 Nov 2024 17:09:16 +0100
Message-id: <[🔎] 1964fb6f-b5e8-4898-b0ed-590727ebc634@canonical.com>
Reply-to: Alessandro Astone <alessandro.astone@canonical.com>, 1087849@bugs.debian.org

Source: cups
Version: 2.4.10-1ubuntu2
Severity: minor

Dear Maintainer,

I'm attaching a debdiff to drop 0013-CVE-2023-32324.patch because it iswrong:The fix is already applied in version 2.4.10, the debian patch wasadding a duplicate if-return (no-op)

diff -Nru cups-2.4.10/debian/changelog cups-2.4.10/debian/changelog
--- cups-2.4.10/debian/changelog	2024-09-26 23:45:05.000000000 +0200
+++ cups-2.4.10/debian/changelog	2024-11-19 16:51:01.000000000 +0100
@@ -1,3 +1,11 @@
+cups (2.4.10-2.1) UNRELEASED; urgency=medium
+
+  * Drop 0013-CVE-2023-32324.patch:
+    The fix is already applied in version 2.4.10,
+    the debian patch was adding a duplicate if-return (no-op)
+
+ -- Alessandro Astone <alessandro.astone@canonical.com>  Tue, 19 Nov 2024 16:51:01 +0100
+
 cups (2.4.10-2) unstable; urgency=medium
 
   [ Helge Kreutzmann ]
diff -Nru cups-2.4.10/debian/patches/0013-CVE-2023-32324.patch cups-2.4.10/debian/patches/0013-CVE-2023-32324.patch
--- cups-2.4.10/debian/patches/0013-CVE-2023-32324.patch	2024-09-26 23:45:05.000000000 +0200
+++ cups-2.4.10/debian/patches/0013-CVE-2023-32324.patch	1970-01-01 01:00:00.000000000 +0100
@@ -1,21 +0,0 @@
-From: Thorsten Alteholz <debian@alteholz.de>
-Date: Wed, 31 May 2023 23:08:29 +0200
-Subject: CVE-2023-32324
-
----
- cups/string.c | 2 ++
- 1 file changed, 2 insertions(+)
-
-diff --git a/cups/string.c b/cups/string.c
-index b82ac49..b2ab2f4 100644
---- a/cups/string.c
-+++ b/cups/string.c
-@@ -730,6 +730,8 @@ _cups_strlcpy(char       *dst,		/* O - Destination string */
- {
-   size_t	srclen;			/* Length of source string */
- 
-+  if (size == 0)
-+    return (0);
- 
-   if (size == 0)
-     return (0);
diff -Nru cups-2.4.10/debian/patches/series cups-2.4.10/debian/patches/series
--- cups-2.4.10/debian/patches/series	2024-09-26 23:45:05.000000000 +0200
+++ cups-2.4.10/debian/patches/series	2024-11-19 16:50:59.000000000 +0100
@@ -10,5 +10,4 @@
 0015-Debian-Reproducibility-Do-not-run-stp-tests-as-root.patch
 0016-Debian-po4a-infrastructure-and-translations-for-manp.patch
 0012-add-pt.patch
-0013-CVE-2023-32324.patch
 0014-CVE-2024-47175-and-further-hardening.patch

Reply to:

Prev by Date: Bug#1079457: cups: Dependencies prevent installation
Next by Date: Bug#1088069: gutenprint: Stop building gimp-gutenprint
Previous by thread: Bug#1079457: cups: Dependencies prevent installation
Next by thread: Bug#1088069: gutenprint: Stop building gimp-gutenprint
Index(es):
- Date
- Thread