Fedora has issued an advisory on April 3: https://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html It was fixed upstream in 1.0.51, so Cauldron is not affected. Patched package uploaded for Mageia 4. Advisory: ======================== Updated cups-filters packages fix security vulnerability: Sebastian Krahmer discovered it was possible to use malicious broadcast packets to execute arbitrary commands on a server running the cups-browsed daemon (CVE-2014-2707). Note that only systems that have enabled the affected feature by using the CreateIPPPrinterQueues configuration directive in /etc/cups/cups-browsed.conf are affected. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2707 https://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html ======================== Updated packages in core/updates_testing: ======================== cups-filters-1.0.41-3.3.mga4 libcups-filters1-1.0.41-3.3.mga4 libcups-filters-devel-1.0.41-3.3.mga4 from cups-filters-1.0.41-3.3.mga4.src.rpm Reproducible: Steps to Reproduce:
Looks like the build system choked. Subrel incremented, new build submitted. Advisory: ======================== Updated cups-filters packages fix security vulnerability: Sebastian Krahmer discovered it was possible to use malicious broadcast packets to execute arbitrary commands on a server running the cups-browsed daemon (CVE-2014-2707). Note that only systems that have enabled the affected feature by using the CreateIPPPrinterQueues configuration directive in /etc/cups/cups-browsed.conf are affected. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2707 https://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html ======================== Updated packages in core/updates_testing: ======================== cups-filters-1.0.41-3.4.mga4 libcups-filters1-1.0.41-3.4.mga4 libcups-filters-devel-1.0.41-3.4.mga4 from cups-filters-1.0.41-3.4.mga4.src.rpm
I tested it on my i586 setup. The HPlip test page printing is ok. Also tested with black and white page & one with colors. Seems perfectly working for me.
CC: (none) => filorin.mageia
Well done Guillaume, adding the OK
Whiteboard: (none) => has_procedure mga4-32-ok
No regressions here mga4 64
Whiteboard: has_procedure mga4-32-ok => has_procedure mga4-32-ok mga4-64-ok
Advisory uploaded. Validating. Could sysadmin please push to 4 updates Thanks
Keywords: (none) => validated_updateWhiteboard: has_procedure mga4-32-ok mga4-64-ok => has_procedure advisory mga4-32-ok mga4-64-okCC: (none) => sysadmin-bugs
URL: (none) => http://lwn.net/Vulnerabilities/595034/
Update pushed: http://advisories.mageia.org/MGASA-2014-0181.html
Status: NEW => RESOLVEDCC: (none) => tmbResolution: (none) => FIXED