[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-15400/cups

Thu, 22 Feb 2018 12:43:33 -0800 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
fc4c54cb by Salvatore Bonaccorso at 2018-02-22T21:42:37+01:00
Add CVE-2017-15400/cups

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24453,7 +24453,12 @@ CVE-2017-15402
 CVE-2017-15401
        RESERVED
 CVE-2017-15400 (Insufficient restriction of IPP filters in CUPS in Google 
Chrome OS ...)
-       TODO: check
+       - cups 2.2.3-2
+       NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=777215
+       NOTE: Patches from upstream to restrict what filters will be accpeted
+       NOTE: 
https://github.com/apple/cups/commit/07428f6a640ff93aa0b4cc69ca372e2cf8490e41 
(v2.2.2)
+       NOTE: 
https://github.com/apple/cups/commit/1add23375658e9163e5493ee19de7c9f7a9b483b 
(v2.2.2)
+       TODO: double-check
 CVE-2017-15399
        RESERVED
        {DSA-4024-1}



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fc4c54cb3ef14f7fd9d1f0a71216c4ec21d1c0b7

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fc4c54cb3ef14f7fd9d1f0a71216c4ec21d1c0b7
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to