[Pkg-cups-devel] Bug#530027: cups: Request from "…" using invalid Host: field "…"
Ben Finney
ben+debian at benfinney.id.au
Sat May 23 00:24:10 UTC 2009
On 23-May-2009, Ben Finney wrote:
> Could this be related to the following entry in the Debian changelog:
>
> =====
> * New upstream security/bug fix release:
> - The scheduler now protects against DNS rebinding attacks. Please note
> that this could lead to some regressions. (CVE-2009-0164)
> =====
>
> I'm completely unable to print or manage CUPS while this continues.
> That sounds like a regression to me, but there's no hint of how to fix
> it or know whether that's behind the problem.
I have downgraded to ‘cups 1.3.8-1lenny5’, with no other change, and
the correct behaviour is restored. This supports the explanation that
a change in the newer version is the cause of this bug.
--
\ “I was stopped by the police for speeding; they said ‘Don't you |
`\ know the speed limit is 55 miles an hour?’ I said ‘Yeah I know, |
_o__) but I wasn't going to be out that long.’” —Steven Wright |
Ben Finney <ben at benfinney.id.au>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-cups-devel/attachments/20090523/0beeee19/attachment.pgp>
More information about the Pkg-cups-devel
mailing list