cups: CVE-2012-5519

lpadmin to (limited) root privilege escalation http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5519 http://www.cups.org/strfiles/4223/str4223v2-1.4.4-debian.patch [YOCTO #3579] [ CQID: WIND00392016 ] Upstream-Status: Backport (From OE-Core rev: 9f6964b489ef3e0f175bf33a94ab819408875da8) Signed-off-by: Li Wang <li.wang@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2012-12-13 12:25:26 +08:00 · 2012-12-13 12:25:26 +08:00 · 4371e8f68a
parent b2b1d86bb3
commit 4371e8f68a
2 changed files with 2967 additions and 1 deletions
--- a/meta/recipes-extended/cups/cups-1.4.6/cups-CVE-2012-5519.patch
+++ b/meta/recipes-extended/cups/cups-1.4.6/cups-CVE-2012-5519.patch
--- a/meta/recipes-extended/cups/cups_1.4.6.bb
+++ b/meta/recipes-extended/cups/cups_1.4.6.bb
@ -1,6 +1,6 @@
 require cups14.inc

-PR = "r6"
+PR = "r7"
 DEPENDS += "libusb \
       ${@base_contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"

@ -9,6 +9,7 @@ SRC_URI += " \
            file://use_echo_only_in_init.patch \
            file://0001-don-t-try-to-run-generated-binaries.patch \
            file://cups_serverbin.patch \
+            file://cups-CVE-2012-5519.patch \
 	"

 SRC_URI[md5sum] = "de8fb5a29c36554925c0c6a6e2c0dae1"