| Description: | The Common UNIX Printing System (CUPS) provides a portable printing layerfor UNIX operating systems.A heap-based buffer overflow flaw was found in the Lempel-Ziv-Welch (LZW)decompression algorithm implementation used by the CUPS GIF image formatreader. An attacker could create a malicious GIF image file that, whenprinted, could possibly cause CUPS to crash or, potentially, executearbitrary code with the privileges of the "lp" user. (CVE-2011-2896)These updated cups packages also provide fixes for the following bugs:* Previously CUPS was not correctly handling the language settingLANG=en_US.ASCII. As a consequence lpadmin, lpstat and lpinfo binaries werenot displaying any output when the LANG=en_US.ASCII environment variablewas used. As a result of this update the problem is fixed and the expectedoutput is now displayed. (BZ#681836)* Previously the scheduler did not check for empty values of severalconfiguration directives. As a consequence it was possible for the CUPSdaemon (cupsd) to crash when a configuration file contained certain emptyvalues. With this update the problem is fixed and cupsd no longer crasheswhen reading such a configuration file. (BZ#706673)* Previously when printing to a raw print queue, when using certain printermodels, CUPS was incorrectly sending SNMP queries. As a consequence therewas a noticeable 4-second delay between queueing the job and the start ofprinting. With this update the problem is fixed and CUPS no longer tries tocollect SNMP supply and status information for raw print queues.(BZ#709896)* Previously when using the BrowsePoll directive it could happen that theCUPS printer polling daemon (cups-polld) began polling before the networkinterfaces were set up after a system boot. CUPS was then caching thefailed hostname lookup. As a consequence no printers were found and theerror, "Host name lookup failure", was logged. With this update the codethat re-initializes the resolver after failure in cups-polld is fixed andas a result CUPS will obtain the correct network settings to use in printerdiscovery. (BZ#712430)* The MaxJobs directive controls the maximum number of print jobs that arekept in memory. Previously, once the number of jobs reached the limit, theCUPS system failed to automatically purge the data file associated with theoldest completed job from the system in order to make room for a new printjob. This bug has been fixed, and the jobs beyond the set limit are nowproperly purged. (BZ#735505)* The cups init script (/etc/rc.d/init.d/cups) uses the daemon function(from /etc/rc.d/init.d/functions) to start the cups process, but previouslyit did not source a configuration file from the /etc/sysconfig/ directory.As a consequence, it was difficult to cleanly set the nice level or cgroupfor the cups daemon by setting the NICELEVEL or CGROUP_DAEMON variables.With this update, the init script is fixed. (BZ#744791)All users of CUPS are advised to upgrade to these updated packages, whichcontain backported patches to resolve these issues. After installing thisupdate, the cupsd daemon will be restarted automatically. |