Bug 14060

Summary: [CVE21] cups 2.3.3 CVE
Product: [ROSA-based products] ROSA Fresh Reporter: Vladimir Potapov <v.potapov>
Component: Preinstalled software in the ISOAssignee: ROSA Linux Bugs <bugs>
Status: VERIFIED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: blocker    
Priority: Highest CC: a.proklov, e.kosachev, pastordidi, s.matveev
Version: AllFlags: v.potapov: qa_verified+
e.kosachev: secteam_verified+
a.proklov: published+
Target Milestone: 2021.1 Fresh R12   
Hardware: All   
OS: Linux   
URL: CVE-2023-32324
Whiteboard:
Platform: 2021.1 ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Vladimir Potapov 2023-11-29 12:15:32 MSK 
https://nvd.nist.gov/vuln/detail/CVE-2023-32324 Exploit!
Comment 1 Svyatoslav Matveev 2023-11-29 15:38:20 MSK 
********** QA ADVISORY **********

Уязвимость закрыта наложением патча.

*** cups
**  2.3.3op2 (merge rosa2023.1)

https://abf.io/build_lists/4841380
https://abf.io/build_lists/4841381
https://abf.io/build_lists/4841382
https://abf.io/build_lists/4841384
https://abf.io/build_lists/4841383
Comment 2 Dmitry Postnikov 2023-11-30 11:17:27 MSK 
*****************************
Обновление отослано в Тестинг
Comment 3 Vladimir Potapov 2023-12-05 02:43:34 MSK 
cups-2.3.3op2-10
https://abf.io/build_lists/4841380
https://abf.io/build_lists/4841381
https://abf.io/build_lists/4841382
https://abf.io/build_lists/4841384
https://abf.io/build_lists/4841383
*************************** Advisory *********************
CVE closed by patch
**********************************************************
QA Verified
Comment 4 Eduard 2024-06-03 11:14:16 MSK 
*******************************************************
Secteam_verified
*******************************************************
https://abf.rosalinux.ru/advisories/ROSA-SA-2024-2427
*******************************************************