Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » RHBA-2015:0064-01

Overview

Id RHBA-2015:0064-01
Name Red Hat 2015:0064-01 RHBA cups bug fix update for RHEL 5 x86_64
Vendor Name red_hat
Product None
Content Type Recommended Recommended
Language(s)
Operating System(s) Linux 
Released On 20 Jan 2015 12:00:00

RHBA-2015:0064-01

Red Hat 2015:0064-01 RHBA cups bug fix update for RHEL 5 x86_64

Vendor Name

red_hat

Product

None

Released On

20 Jan 2015 12:00:00

Url

https://rhn.redhat.com/errata/RHBA-2015-0064.html

Description

LSAC(v2)
The Common UNIX Printing System (CUPS) provides a portable printing layer for Linux, UNIX, and similar operating systems. This update fixes the following bug: * Previously, CUPS did not provide a way of disabling Secure Sockets Layer (SSLv3) support while keeping other secure protocols enabled. This left CUPS users vulnerable to the POODLE attack (CVE-2014-3566, discussed at https://access.redhat.com/articles/1232123), and needing to deploy the stunnel utility for mitigation (as in https://access.redhat.com/solutions/1234843). This update disables SSLv3 support by default. For users who need to continue using SSLv3, an SSLOptions configuration directive has been added to the cupsd.conf file for the cupsd daemon and to the client.conf file for the client programs. (BZ#1161218) Users of cups are advised to upgrade to these updated packages, which fix this bug. After installing this update, the cupsd daemon will be restarted automatically.

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches


Last Updated: 27 May 2016 11:20:32