File: cups.NEWS

package info (click to toggle)
cups 2.2.10-6
  • links: PTS, VCS
  • area: main
  • in suites: bullseye, buster, sid
  • size: 37,872 kB
  • sloc: ansic: 148,350; cpp: 8,666; sh: 5,126; makefile: 2,778; python: 10
file content (15 lines) | stat: -rw-r--r-- 619 bytes parent folder | download | duplicates (7)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
cups (1.5.3-2.7) unstable; urgency=low

  In order to mitigate a privilege escalation from the lpadmin to root
  (CVE-2012-5519), the /etc/cups/cupsd.conf configuration file is split
  in two configuration files:

  * /etc/cups/cupsd.conf can be edited by members of the lpadmin group
    through the cups web interface;
  * /etc/cups/cups-files.conf can only be edited by root;

  Many sensitive configuration statements can now only be set in
  cups-files.conf. No statements have been moved automatically. Please
  check the respective manpages.

 -- Didier Raboud <odyx@debian.org>  Tue, 04 Dec 2012 12:13:14 +0100