]> git.ipfire.org Git - thirdparty/cups.git/commit
projects / thirdparty / cups.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7e388c3) | patch
Fix domain socket handling
authorZdenek Dohnal <zdohnal@redhat.com>
Mon, 3 Jun 2024 16:53:58 +0000 (18:53 +0200)
committerZdenek Dohnal <zdohnal@redhat.com>
Tue, 11 Jun 2024 13:32:31 +0000 (15:32 +0200)
commita436956f374b0fd7f5da9df482e4f5840fa1c0d2
tree3c6cefebc20d663b9fead54d3702c334c761d332tree
parent7e388c3f45741638bc64adf3d9cf88457425ee9acommit | diff
Fix domain socket handling

- Check status of unlink and bind system calls.
- Don't allow extra domain sockets when running from launchd/systemd.
- Validate length of domain socket path (< sizeof(sun_path))

Fixes CVE-2024-35235, written by Mike Sweet
cups/http-addr.c diff | blob | blame | history
scheduler/conf.c diff | blob | blame | history
Mirror of https://github.com/OpenPrinting/cups.git