On Mon, Jun 13, 2022 at 5:32 AM Steve Sakoman via lists.openembedded.org <[email protected]> wrote: > > On Mon, Jun 13, 2022 at 5:01 AM Ross Burton <[email protected]> wrote: > > > > > > > CVE-2022-26691 (CVSS3: 6.7 MEDIUM): cups > > > https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-26691 * > > > > This is fixed in 2.4.2 which is already in master. > > > > The stable branches can cherry-pick > > https://github.com/OpenPrinting/cups/commit/de4f8c196106033e4c372dce3e91b9d42b0b9444. > > I'm working on that for dunfell and kirkstone today.
I've put together a patch for dunfell which will be in the next patchset. However kirkstone and master are both at version 2.4.2, so something must be wrong in the database entry for this to be flagged for both :-( Steve
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#166868): https://lists.openembedded.org/g/openembedded-core/message/166868 Mute This Topic: https://lists.openembedded.org/mt/91728512/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
