1 CHANGES - 2.2.8 - 2018-06-04
2 ============================
8 - SECURITY: Fixed local privilege escalation to root and sandbox bypasses in
9 scheduler (rdar://37836779, rdar://37836995, rdar://37837252, rdar://37837581)
10 - SECURITY: The scheduler did not validate notify-recipient-uri schemes properly
12 - Additional changes for the scheduler to substitute default values for invalid
13 job attributes when running in "relaxed conformance" mode (Issue #5229)
14 - The `ipptool` program no longer checks for duplicate attributes when running
15 in list or CSV mode (Issue #5278)
16 - Fixed builds without PAM (Issue #5283)
17 - Fixed `lpoptions` man page (Issue #5286)
18 - The `cupsCreateJob`, `cupsPrintFile2`, and `cupsPrintFiles2` APIs did not use
19 the supplied HTTP connection (Issue #5288)
20 - Fixed another crash in the scheduler when adding an IPP Everywhere printer
22 - Added a workaround for certain web browsers that do not support multiple
23 authentication schemes in a single response header (Issue #5289)
24 - Fixed policy limits containing the `All` operation (Issue #5296)
25 - The scheduler was always restarted after idle-exit with systemd (Issue #5297)
26 - The mailto notifier did not wait for the welcome message (Issue #5312)
27 - Documentation updates (Issue #5299, Issue #5301, Issue #5306)
28 - Fax queues did not support pause (p) or wait-for-dialtone (w) characters
30 - The scheduler did not validate notify-recipient-uri values properly
32 - The IPP parser allowed invalid group tags (rdar://40442124)
33 - Fixed a parsing bug in the new authentication code.
36 Changes in CUPS v2.2.7
37 ----------------------
39 - NOTICE: Raw print queues are now deprecated (Issue #5269)
40 - Fixed an Avahi crash bug in the scheduler (Issue #5268)
41 - The IPP Everywhere PPD generator did not include the `cupsJobPassword`
42 keyword, when supported (Issue #5265)
43 - Systemd did not restart cupsd when configuration changes were made that
44 required a restart (Issue #5263)
45 - The Lexmark Optra E310 printer needs the "no-reattach" USB quirk rule
47 - The scheduler could crash while adding an IPP Everywhere printer (Issue #5258)
48 - Label printers supported by the rastertolabel driver don't support SNMP, so
49 don't delay printing to test it (Issue #5256)
50 - Fixed a compile issue when PAM is not available (Issue #5253)
51 - Documentation fixes (Issue #5252)
52 - Star Micronics printers need the "unidir" USB quirk rule (Issue #5251)
53 - The scheduler now supports using temporary print queues for older IPP/1.1
54 print queues like those shared by CUPS 1.3 and earlier (Issue #5241)
55 - Fixed printing to some IPP Everywhere printers (Issue #5238)
56 - Kerberized printing to another CUPS server did not work correctly
58 - The `cupsRasterWritePixels` function did not correctly swap bytes for some
60 - Added a USB quirk rule for Canon MP280 series printers (Issue #5221)
61 - The `ppdInstallableConflict` tested too many constraints (Issue #5213)
62 - More fixes for printing to old CUPS servers (Issue #5211)
63 - The `cupsCopyDest` function now correctly copies the `is_default` value
65 - The scheduler did not work with older versions of uClibc (Issue #5188)
66 - The scheduler now substitutes default values for invalid job attributes when
67 running in "relaxed conformance" mode (Issue #5186)
68 - Fixed PAM module detection and added support for the common PAM definitions
70 - Fixed a journald support bug in the scheduler (Issue #5181)
71 - The cups-driverd program incorrectly stopped scanning PPDs as soon as a loop
72 was seen (Issue #5170)
73 - Fixed group validation on OpenBSD (Issue #5166)
74 - Fixed the `ippserver` sample code when threading is disabled or unavailable
76 - The `cupsEnumDests` function did not include options from the lpoptions files
78 - The `SSLOptions` directive now supports `MinTLS` and `MaxTLS` options to
79 control the minimum and maximum TLS versions that will be allowed,
80 respectively (Issue #5119)
81 - The scheduler did not write out dirty configuration and state files if there
82 were open client connections (Issue #5118)
83 - The `lpadmin` command now provides a better error message when an unsupported
84 System V interface script is used (Issue #5111)
85 - The `lp` and `lpr` commands now provide better error messages when the default
86 printer cannot be found (Issue #5096)
87 - No longer support backslash, question mark, or quotes in printer names
89 - The CUPS library now supports the latest HTTP Digest authentication
90 specification including support for SHA-256 (Issue #4862)
91 - The `lpstat` command now reports when new jobs are being held (Issue #4761)
92 - The `lpoptions` command incorrectly saved default options (Issue #4717)
93 - The `ppdLocalizeIPPReason` function incorrectly returned a localized version
94 of "none" (rdar://36566269)
95 - TLS connections now properly timeout (rdar://34938533)
96 - The IPP backend did not properly detect failed PDF prints (rdar://34055474)
97 - Temporary files are now placed in the correct directory for sandboxed
98 applications on macOS (rdar://problem/37789645)
101 Changes in CUPS v2.2.6
102 ----------------------
104 - DBUS notifications could crash the scheduler (Issue #5143)
105 - Added USB quirks rules for Canon MP540 and Samsung ML-2160 (Issue #5148)
106 - Fixed TLS cipher suite selection with GNU TLS (Issue #5145, Issue #5150)
107 - Localization updates (Issue #5152)
110 Changes in CUPS v2.2.5
111 ----------------------
113 - The scheduler's `-t` option did not force all errors to the standard error
114 file, making debugging of configuration problems hard (Issue #5041)
115 - Fixed a typo in the CUPS Programming Manual (Issue #5042)
116 - Fixed RPM packaging issue (Issue #5043, Issue #5044)
117 - The `cupsGetDests` function incorrectly returned an empty list of printers if
118 there was no default printer (Issue #5046)
119 - The `cupsGetDests` function waited too long for network printers (Issue #5049)
120 - Libtool support was completely broken with current libtool versions that use
121 an incompatible command-line syntax (Issue #5050)
122 - Fixed a build issue with `--enable-mallinfo` (Issue #5051)
123 - The ippserver test program contained a deadlock issue (Issue #5054)
124 - The `cupsLocalizeDest*` functions did not provide base localizations for
125 all registered IPP attributes and values (Issue #5056)
126 - The --enable-libtool configure option requires a path to the libtool program,
127 but doesn't document or check for it (Issue #5062)
128 - Fixed the `SSLOptions DenyCBC` option when using GNU TLS (Issue #5065)
129 - Fixed the `ServerTokens None` option (Issue #5065)
130 - Fixed the default `ServerAlias` value from `ServerName` (Issue #5072)
131 - Fixed the adminurl field in the TXT record for fully-qualified `ServerName`
133 - The scheduler now creates a PID file when not running on demand with a modern
134 service launcher (Issue #5080)
135 - The web interface did not support newer language identifiers used by Microsoft
136 web browsers (Issue #5803)
137 - Updated the cups-files.conf and cupsd.conf file documentation for missing
138 directives (Issue #5084)
139 - Fixed an Avahi-related crash bug in the scheduler (Issue #5085, Issue #5086)
140 - Fixed the interactions between the "print-quality" and "cupsPrintQuality"
141 options (Issue #5090)
142 - The IPP Everywhere PPD generator now sorts the supported resolutions before
143 choosing them for draft, normal, and best quality modes (Issue #5091)
144 - Fixed the localization unit test on Linux (Issue #5097)
145 - The CUPS library did not reuse domain sockets (Issue #5098)
146 - Fixed the "make check" target for some environments (Issue #5099)
147 - The scheduler woke up once per second to remove old temporary queues
149 - Added USB quirk rule for Kyocera printer (Issue #5102, Issue #5103)
150 - Re-documented the limits of `file:///...` device URIs and moved the FileDevice
151 directive in `cups-files.conf` to the list of deprecated configuration
152 directives (Issue #5117)
153 - Added USB quirk rule for HP LaserJet 1160 printer (Issue #5121)
154 - Fixed the script interpreter detection in the configure script (Issue #5122)
155 - The network backends now retry on more error conditions (Issue #5123)
156 - Added a French translation of the web interface (Issue #5134)
157 - `cupsGetDests2` was not using the supplied HTTP connection (Issue #5135)
158 - `httpAddrConnect` leaked sockets in certain circumstances, causing some
159 printers to hang (rdar://31965686)
160 - Fixed an issue with Chinese localizations on macOS (rdar://32419311)
161 - The IPP backend now always sends the "finishings" attribute for printers that
162 support it because otherwise the client cannot override printer defaults
164 - The `cupsGetNamedDest` function did not use the local default printer
166 - The IPP backend incorrectly sent the "job-pages-per-set" attribute to PDF
167 printers (rdar://33250434)
168 - Fixed the `cups.strings` file that is used on macOS (rdar://33287650)
169 - CUPS now sends the `Date` HTTP header in IPP requests (rdar://33302034)
170 - The `ippCopyAttribute` function did not copy out-of-band values correctly
172 - Fixed the localization fallback code on macOS (rdar://33583699)
173 - The scheduler did not run with a high enough priority, causing problems on
174 busy systems (rdar://33789342)
175 - Added support for Japanese Kaku 1 envelope size (rdar://34774110)
176 - The `ipptool` program's `-P` option did not work correctly.
177 - The `ipptool` program did not compare URI scheme or hostname components
178 correctly for the WITH-ALL-HOSTNAMES, WITH-ALL-SCHEMES, WITH-HOSTNAME, or
179 WITH-SCHEME predicates.
182 Changes in CUPS v2.2.4
183 ----------------------
185 - The scheduler did not remove old job files (Issue #4987)
186 - cupsEnumDests did not return early when all printers had been discovered
188 - The CUPS build system now supports cross-compilation (Issue #4897)
189 - Added a new CUPS Programming Manual to replace the aging API documentation.
190 - Added the `cupsAddIntegerOption` and `cupsGetIntegerOption` functions
192 - The `cupsGetDests` and `cupsCreateJob` functions now support Bonjour printers
194 - Added a USB quirk rule for Lexmark E260dn printers (Issue #4994)
195 - Fixed a potential buffer overflow in the `cupstestppd` utility (Issue #4996)
196 - IPP Everywhere improvements (Issue #4998)
197 - Fixed the "cancel all jobs" function in the web interface for several
198 languages (Issue #4999)
199 - Fixed issues with local queues (Issue #5003, Issue #5008, Issue #5009)
200 - The `lpstat` command now supports a `-e` option to enumerate local printers
201 (either previously added or on the network) that can be accessed
203 - The `lp` and `lpr` commands now support printing to network printers that
204 haven't yet been added (Issue #5006)
205 - Fixed a typo in the mime.types file.
206 - Fixed a bug in the Spanish web interface template (Issue #5016)
207 - The `cupsEnumDests*` and `cupsGetDest*` functions now report the value of the
208 "printer-is-temporary" Printer Status attribute (Issue #5028)
209 - Added Chinese localization (Issue #5029)
210 - The `cupsCheckDestSupported` function did not support `NULL` values
212 - Fixed some issues in the RPM spec file (Issue #5032)
213 - The `cupsConnectDest` function now supports the `CUPS_DEST_FLAGS_DEVICE` flag
214 for explicitly connecting to the device (printer) associated with the
216 - The `SSLOptions` directive in "client.conf" and "cupsd.conf" now supports
217 `DenyCBC` and `DenyTLS1.0` options (Issue #5037)
220 Changes in CUPS v2.2.3
221 ----------------------
223 - The IPP backend could get into an infinite loop for certain errors, causing a
224 hung queue (<rdar://problem/28008717>)
225 - The scheduler could pause responding to client requests in order to save state
226 changes to disk (<rdar://problem/28690656>)
227 - Added support for PPD finishing keywords (Issue #4960, Issue #4961,
229 - The IPP backend did not send a media-col attribute for just the source or type
231 - IPP Everywhere print queues did not always support all print qualities
232 supported by the printer (Issue #4953)
233 - IPP Everywhere print queues did not always support all media types supported
234 by the printer (Issue #4953)
235 - The IPP Everywhere PPD generator did not return useful error messages
237 - The IPP Everywhere finishings support did not work correctly with common UI or
238 command-line options (Issue #4976)
239 - Fixed an error handling issue for the network backends (Issue #4979)
240 - The default cupsd.conf file did not work on systems compiled without Kerberos
241 support (Issue #4947)
242 - The "reprint job" option was not available for some canceled jobs
244 - Updated the job listing in the web interface (Issue #4978)
245 - Fixed some localization issues on macOS (<rdar://problem/27245567>)
248 Changes in CUPS v2.2.2
249 ----------------------
251 - Fixed some issues with the Zebra ZPL printer driver (Issue #4898)
252 - Fixed some issues with IPP Everywhere printer support (Issue #4893,
253 Issue #4909, Issue #4916, Issue #4921, Issue #4923, Issue #4932, Issue #4933,
255 - The rastertopwg filter could crash with certain input (Issue #4942)
256 - Optimized connection usage in the IPP backend (<rdar://problem/29547323>)
257 - The scheduler did not detect when an encrypted connection was closed by the
258 client on Linux (Issue #4901)
259 - The cups-lpd program did not catch all legacy usage of ISO-8859-1
261 - Fixed builds on systems without a working poll() implementation (Issue #4905)
262 - Added a USB quirk rule for the Kyocera Ecosys P6026cdn (Issue #4900)
263 - The scheduler no longer creates log files on startup
264 (<rdar://problem/28332470>)
265 - The ippContainsString function now uses case-insensitive comparisons for
266 mimeMediaType, name, and text values in conformance with RFC 2911.
267 - The network backends now log the addresses that were found for a printer
268 (<rdar://problem/29268474>)
269 - Let's Encrypt certificates did not work when the hostname contained uppercase
270 letters (Issue #4919)
271 - Fixed reporting of printed pages in the web interface (Issue #4924)
272 - Updated systemd config files (Issue #4935)
273 - Updated documentation (PR #4896)
274 - Updated localizations (PR #4894, PR #4895, PR #4904, PR #4908, Issue #4946)
275 - Updated packaging files (Issue #4940)
278 Changes in CUPS v2.2.1
279 ----------------------
281 - Added "CreateSelfSignedCerts" directive for cups-files.conf to control whether
282 the scheduler automatically creates its own self-signed X.509 certificates for
283 TLS connections (Issue #4876)
284 - http*Connect did not handle partial failures (Issue #4870)
285 - Addressed some build warnings on Linux (Issue #4881)
286 - cupsHashData did not use the correct hashing algorithm
287 (<rdar://problem/28209220>)
288 - Updated man pages (PR #4885)
289 - Updated localizations (PR #4877, PR #4886)
292 Changes in CUPS v2.2.0
293 ----------------------
295 - Normalized the TLS certificate validation code and added additional error
296 messages to aid troubleshooting.
297 - The httpConnect functions did not work on Linux when cupsd was not running
299 - The --no-remote-any option of cupsctl had no effect (Issue #4866)
300 - http*Connect did not return early when all addresses failed (Issue #4870)
303 Changes in CUPS v2.2rc1
304 -----------------------
306 - Updated the list of supported IPP Everywhere media types.
307 - The IPP backend did not validate TLS credentials properly.
308 - The printer-state-message attribute was not cleared after a print job with no
310 - The CUPS-Add-Modify-Class and CUPS-Add-Modify-Printer operations did not
311 always return an error for failed adds (Issue #4854)
312 - PPD files with names longer than 127 bytes did not work (Issue #4860)
313 - Updated localizations (Issue #4846, PR #4858)
316 Changes in CUPS v2.2b2
317 ----------------------
319 - Added Upstart support (PR #4825)
320 - CUPS now supports Let's Encrypt certificates on Linux.
323 Changes in CUPS v2.2b1
324 ----------------------
326 - All CUPS commands now support POSIX options (Issue #4813)
327 - The scheduler now restarts faster (Issue #4760)
328 - Improved performance of web interface with large numbers of jobs (Issue #3819)
329 - Encrypted printing can now be limited to only trusted printers and servers
330 (<rdar://problem/25711658>)
331 - The scheduler now advertises PWG Raster attributes for IPP Everywhere clients
333 - The scheduler now logs informational messages for jobs at LogLevel "info"
335 - The scheduler now uses the getgrouplist function when available (Issue #4611)
336 - The IPP backend no longer enables compression by default except for certain
337 raster formats that generally benefit from it (<rdar://problem/25166952>)
338 - The scheduler did not handle out-of-disk situations gracefully (Issue #4742)
339 - The LPD mini-daemon now detects invalid UTF-8 sequences in job, document, and
340 user names (Issue #4748)
341 - The IPP backend now continues on to the next job when the remote server/
342 printer puts the job on hold (<rdar://problem/24858548>)
343 - The scheduler did not cancel multi-document jobs immediately
344 (<rdar://problem/24854834>)
345 - The scheduler did not return non-shared printers to local clients unless they
346 connected to the domain socket (<rdar://problem/24566996>)
347 - The scheduler now reads the spool directory if one or more job cache entries
348 point to deleted jobs (<rdar://problem/24048846>)
349 - Added support for disc media sizes (<rdar://problem/20219536>)
350 - The httpAddrConnect and httpConnect* APIs now try connecting to multiple
351 addresses in parallel (<rdar://problem/20643153>)
352 - The cupsd domain socket is no longer world-accessible on macOS
353 (<rdar://problem/7542560>)
354 - Interface scripts are no longer supported for security reasons
355 (<rdar://problem/23135640>)
356 - Added a new cupsHashData API and support for hashed job passwords
357 (<rdar://problem/20221502>)
358 - Localization fixes (<rdar://problem/25292403>, <rdar://problem/25461517>,
359 Issue #4041, Issue #4796)
360 - Documentation changes (Issue #4624, Issue #4781)
361 - Packaging fixes (PR #4832)
projects / thirdparty / cups.git / blob