Copied from
ubuntu focal in
Private PPA for Ubuntu Security Team
by Marc Deslauriers
Changelog
cups-filters (1.27.4-1ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: code execution in beh CUPS backend
- debian/patches/CVE-2023-24805-1.patch: use execv() instead of
system() in backend/beh.c.
- debian/patches/CVE-2023-24805-2.patch: extra checks against
odd/forged input in backend/beh.c.
- debian/patches/CVE-2023-24805-3.patch: further improvements in
backend/beh.c.
- CVE-2023-24805
-- Marc Deslauriers <email address hidden> Mon, 15 May 2023 10:35:05 -0400