This bug was fixed in the package cups - 1.4.3-1ubuntu1.13
---------------
cups (1.4.3-1ubuntu1.13) lucid-security; urgency=medium
* SECURITY UPDATE: privilege escalation via symlinks and world-readable
permissions
- debian/patches/CVE-2014-50xx.dpatch: add some more symlink and
permission checks to scheduler/client.c.
- CVE-2014-5029
- CVE-2014-5030
- CVE-2014-5031
* debian/patches/cups-restore-access-to-logfiles.dpatch: fix regressions
caused by recent security updates by allowing access to cupsd.conf and
the log files. (LP: #1349387)
-- Marc Deslauriers <[email protected]> Fri, 05 Sep 2014 15:21:01
-0400
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1349387
Title:
server settings are inaccessible
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cups/+bug/1349387/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
