diff options
author | jlam <jlam@pkgsrc.org> | 2002-12-20 06:59:58 +0000 |
---|---|---|
committer | jlam <jlam@pkgsrc.org> | 2002-12-20 06:59:58 +0000 |
commit | a867f616be31a3deec9807bbce572f838e0a1a65 (patch) | |
tree | 8b150b14e852e8355d16bca26c4a09f68e7b5222 /doc | |
parent | a818b14fed7f6f7a533e4dd48b1c5d5db8ec7ed5 (diff) | |
download | pkgsrc-a867f616be31a3deec9807bbce572f838e0a1a65.tar.gz |
Updated print/cups to 1.1.18. Changes from version 1.1.17 include:
- SECURITY FIX: The scheduler now provides a FileDevice directive to
control whether new printers can be added using device URIs of the form
"file:/filename". The default is to not allow printers with these
device URIs.
- SECURITY FIX: Potential underflow/overflow bug in web interface.
- SECURITY FIX: Race condition in certificate creation.
- SECURITY FIX: Bad URIs in browse packets could be used to exploit the
web interface underflow/overflow bug.
- SECURITY FIX: Some types of Denial of Service attacks were not handled
properly, so once the attack was over the scheduler did not close the
connections immediately on all platforms.
- SECURITY FIXES: Added integer overflow/underflow checks for all image
formats.
- Bug fixes to the scheduler.
- Upgraded pdftops filter to Xpdf 2.01 with fixes for TrueType fonts.
- Added a MaxClientsPerHost configuration directive to provide limited
protection against Denial of Service attacks.
Diffstat (limited to 'doc')
-rw-r--r-- | doc/CHANGES | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/CHANGES b/doc/CHANGES index 8de16142555..78b9f8255bd 100644 --- a/doc/CHANGES +++ b/doc/CHANGES @@ -1,4 +1,4 @@ -$NetBSD: CHANGES,v 1.848 2002/12/19 22:26:12 jlam Exp $ +$NetBSD: CHANGES,v 1.849 2002/12/20 07:00:45 jlam Exp $ Changes to the packages collection and infrastructure in 2002: @@ -4023,3 +4023,4 @@ Changes to the packages collection and infrastructure in 2002: Updated openslp to 1.0.10 [jlam 2002-12-19] Updated png to 1.2.5nb1 [fredb 2002-12-19] Updated cups to 1.1.17 [jlam 2002-12-19] + Updated cups to 1.1.18 [jlam 2002-12-20] |