Mailinglist Archive: opensuse-updates (144 mails)

< Previous Next >
openSUSE-SU-2015:2367-1: moderate: Security update for cups-filters
openSUSE Security Update: Security update for cups-filters
______________________________________________________________________________

Announcement ID: openSUSE-SU-2015:2367-1
Rating: moderate
References: #957531
Cross-References: CVE-2015-8327 CVE-2015-8560
Affected Products:
openSUSE 13.2
______________________________________________________________________________

An update that fixes two vulnerabilities is now available.

Description:


This update for cups-filters fixes the following issues:

- cups-filters-1.0.58-CVE-2015-8327-et_alii.patch adds back tick and
semicolon to the list of illegal shell escape characters to fix
CVE-2015-8327 and CVE-2015-8560 (boo#957531).


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 13.2:

zypper in -t patch openSUSE-2015-954=1

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE 13.2 (i586 x86_64):

cups-filters-1.0.58-2.11.1
cups-filters-cups-browsed-1.0.58-2.11.1
cups-filters-cups-browsed-debuginfo-1.0.58-2.11.1
cups-filters-debuginfo-1.0.58-2.11.1
cups-filters-debugsource-1.0.58-2.11.1
cups-filters-devel-1.0.58-2.11.1
cups-filters-foomatic-rip-1.0.58-2.11.1
cups-filters-foomatic-rip-debuginfo-1.0.58-2.11.1
cups-filters-ghostscript-1.0.58-2.11.1
cups-filters-ghostscript-debuginfo-1.0.58-2.11.1


References:

https://www.suse.com/security/cve/CVE-2015-8327.html
https://www.suse.com/security/cve/CVE-2015-8560.html
https://bugzilla.suse.com/957531


< Previous Next >
This Thread
  • No further messages