SUSE-SU-2018:4059-1
- Source
- https://www.suse.com/support/update/announcement/2018/suse-su-20184059-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:4059-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2018:4059-1
- Upstream
- Related
- Published
- 2018-12-10T07:07:50Z
- Modified
- 2025-05-08T17:04:38.306783Z
- Summary
- Security update for cups
- Details
-
This update for cups fixes the following issues:
Security issue fixed:
- CVE-2018-4700: Fixed extremely predictable cookie generation that is effectively breaking the CSRF protection of the CUPS web interface (bsc#1115750).
- References
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15
cups
Package
- Name
- cups
- Purl
- pkg:rpm/suse/cups&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.2.7-3.6.1
Ecosystem specific
{
"binaries": [
{
"cups-client": "2.2.7-3.6.1",
"cups-config": "2.2.7-3.6.1",
"libcups2": "2.2.7-3.6.1",
"libcupsimage2": "2.2.7-3.6.1",
"libcupsppdc1": "2.2.7-3.6.1",
"cups": "2.2.7-3.6.1",
"cups-devel": "2.2.7-3.6.1",
"libcupsmime1": "2.2.7-3.6.1",
"libcupscgi1": "2.2.7-3.6.1"
}
]
}