DSA-1933-1

NameDSA-1933-1
SourceDebian
Descriptioncups cupsys - cross-site scripting
ReferencesCVE-2009-2820
Debian/oldstablepackage cupsys is fixed in oldstable-security.
Debian/stablenot vulnerable
Debian/testingnot known to be vulnerable
Debian/unstablenot known to be vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
cups (PTS)lenny, lenny (security)1.3.8-1+lenny7fixed
cupsys (PTS)etch1.2.7-4etch6vulnerable
etch (security)1.2.7-4+etch9fixed

The next table lists affected binary packages.

Binary PackageReleaseVersionStatusArchitecures
cups, cups-bsd, cups-client, cups-dbg, libcups2, libcups2-dev, libcupsimage2, libcupsimage2-devlenny, lenny (security)1.3.8-1+lenny7fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cups-common, cupsys, cupsys-bsd, cupsys-client, cupsys-common, cupsys-dbg, libcupsys2, libcupsys2-devlenny, lenny (security)1.3.8-1+lenny7fixedall
cupsys, cupsys-bsd, cupsys-client, cupsys-dbg, libcupsimage2, libcupsimage2-dev, libcupsys2, libcupsys2-devetch1.2.7-4etch6vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)1.2.7-4+etch9fixedalpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cupsys-common, libcupsys2-gnutls10etch1.2.7-4etch6vulnerableall
etch (security)1.2.7-4+etch9fixedall

The information above is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cupssourcelenny1.3.8-1+lenny7unknown
cupsyssourceetch1.2.7-4+etch9unknown
Search for package or bug name: Reporting problems

Home - Testing Security Team - Debian Security - Imprint