SUSE-SU-2018:2172-1 -- SLES cups, libcups2, libcupscgi1, libcupsimage2, libcupsmime1, libcupsppdc1ID: oval:org.secpod.oval:def:89049769 | Date: (C)2023-06-20 (M)2023-06-19 |
Class: PATCH | Family: unix |
This update for cups fixes the following issues: The following security vulnerabilities were fixed: - Fixed a local privilege escalation to root and sandbox bypasses in the scheduler - CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend - CVE-2018-4181: Limited local file reads as root via cupsd.conf include directive - CVE-2018-4182: Fixed a sandbox bypass due to insecure error handling - CVE-2018-4183: Fixed a sandbox bypass due to profile misconfiguration
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Desktop 15 |
Product: |
cups |
libcups2 |
libcupscgi1 |
libcupsimage2 |
libcupsmime1 |
libcupsppdc1 |