Overview

File _patchinfo of Package patchinfo.34073

<patchinfo incident="34073">
  <issue tracker="cve" id="2024-35235"/>
  <issue tracker="bnc" id="1225365">VUL-0: EMBARGOED: CVE-2024-35235: cups: Listen port arbitrary chmod 0140777</issue>
  <issue tracker="bnc" id="1223179">CUPS: as non-root user "cancel -a ..." fails "Unauthorized" with "DefaultAuthType Negotiate"</issue>
  <packager>npower</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for cups</summary>
  <description>This update for cups fixes the following issues:

- CVE-2024-35235: Fixed a bug in cupsd that could allow an attacker to change the permissions of other files in the system. (bsc#1225365)
- Handle local 'Negotiate' authentication response for cli clients (bsc#1223179)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places