CUPS 2.4.2

1 minute read

CUPS 2.4.2 brings the fix for CVE-2022-26691, together with LibreSSL/OpenSSL and minimal AIX support. There are lots of bug fixes as well, feel free to check the list of changes:

  • Fixed certificate strings comparison for Local authorization (CVE-2022-26691)
  • The cupsFileOpen function no longer opens files for append in read-write mode (Issue #291)
  • The cupsd daemon removed processing temporary queue (Issue #364)
  • Fixed delay in IPP backend if GNUTLS is used and endpoint doesn’t confirm closing the connection (Issue #365)
  • Fixed conditional jump based on uninitialized value in cups/ppd.c (Issue #329)
  • Fixed CSS related issues in CUPS Web UI (Issue #344)
  • Fixed copyright in CUPS Web UI trailer template (Issue #346)
  • mDNS hostname in device uri is not resolved when installaling a permanent IPP Everywhere queue (Issues #340, #343)
  • The lpstat command now reports when the scheduler is not running (Issue #352)
  • Updated the man pages concerning the -h option (Issue #357)
  • Re-added LibreSSL/OpenSSL support (Issue #362)
  • Updated the Solaris smf service file (Issue #368)
  • Fixed a regression in lpoptions option support (Issue #370)
  • The scheduler now regenerates the PPD cache information after changing the “cupsd.conf” file (Issue #371)
  • Updated the scheduler to set “auth-info-required” to “username,password” if a backend reports it needs authentication info but doesn’t set a method for authentication (Issue #373)
  • Updated the configure script to look for the OpenSSL library the old way if pkg-config is not available (Issue #375)
  • Fixed the prototype for the httpWriteResponse function (Issue #380)
  • Brought back minimal AIX support (Issue #389)
  • cupsGetResponse did not always set the last error.
  • Fixed a number of old references to the Apple CUPS web page.
  • Restored the default/generic printer icon file for the web interface.
  • Removed old stylesheet classes that are no longer used by the web interface.

Enjoy the new CUPS release!