Synopsis: Moderate: cups security and bug fix update Advisory ID: SLSA-2020:3864-1 Issue Date: 2020-10-01 CVE Numbers: CVE-2019-8675 CVE-2017-18190 CVE-2019-8696 -- Security Fix(es): * cups: DNS rebinding attacks via incorrect whitelist (CVE-2017-18190) * cups: stack-buffer-overflow in libcups's asn1_get_type function (CVE-2019-8675) * cups: stack-buffer-overflow in libcups's asn1_get_packed function (CVE-2019-8696) -- SL7 x86_64 cups-libs-1.6.3-51.el7.i686.rpm cups-client-1.6.3-51.el7.x86_64.rpm cups-devel-1.6.3-51.el7.i686.rpm cups-libs-1.6.3-51.el7.x86_64.rpm cups-1.6.3-51.el7.x86_64.rpm cups-filesystem-1.6.3-51.el7.noarch.rpm cups-lpd-1.6.3-51.el7.x86_64.rpm cups-devel-1.6.3-51.el7.x86_64.rpm cups-debuginfo-1.6.3-51.el7.i686.rpm cups-debuginfo-1.6.3-51.el7.x86_64.rpm cups-ipptool-1.6.3-51.el7.x86_64.rpm noarch cups-filesystem-1.6.3-51.el7.noarch.rpm - Scientific Linux Development Team