[Deepin Integration]~[V23-Beta3] fix: CVE-2024-47076 CVE-2024-47176 by xzl01@deepin-community/cups-filters by deepin-community-ci-bot[bot]

linuxdeepin / developer-center

Deepin developer center, provide developer wiki and community forum.

452 stars 73 forks source link

[Deepin Integration]~[V23-Beta3] fix: CVE-2024-47076 CVE-2024-47176 by xzl01@deepin-community/cups-filters by deepin-community-ci-bot[bot] #10705

Closed deepin-bot[bot] closed 1 month ago

deepin-bot[bot] commented 1 month ago

Package information | 软件包信息

包名	版本
cups-filters	1.28.17-3.1~deepin3

Package repository address | 软件包仓库地址

deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-2051/testing/ ./

Changelog | 更新信息

cups-filters (1.28.17-3.1~deepin3) unstable; urgency=medium

Fix CVE-2024-47076.
Fix CVE-2024-47176.

deepin-bot[bot] commented 1 month ago

Integration Test Info

Test suggestion | 测试建议

高危安全漏洞

Fix CVE-2024-47176 Fix CVE-2024-47076

Influence | 影响范围

ADDITIONAL INFORMATION | 额外补充

测试指引

以下操作需要在 deepin 23 正式版与内测环境同时测试

添加仓库，升级 (应至少有 cups-filters libcupsfilters1 升级)
安装 cups-browsed(非预装)，确定可以安装成功（尤其是 deepin 23 正式版）
在完成 2 后，在 /etc/cups/cups-browsed.conf 中，搜索 BrowseRemoteProtocols 字段，应不含 cups，应只含 dnssd

deepin-bot[bot] commented 1 month ago

IntegrationProjector Notify the author @xzl01: Integrated issue updated

deepin-bot[bot] commented 1 month ago

IntegrationProjector Bot Deepin Testing Integration Project Manager Info Link to https://github.com/deepin-community/Repository-Integration/pull/2051

babyfengfjx commented 1 month ago

@kobe337 请优先处理~

kobe337 commented 1 month ago

【环境】：镜像：Deepin OS-23-20240925022724-1_x86_64 内核：Linux deepin-PC 6.6.52-amd64-desktop-hwe #23.01.00.38 SMP PREEMPT_DYNAMIC Tue Sep 24 17:30:32 CST 2024 x86_64 GNU/Linux

【结论】：测试通过，暂无严重问题及影响,安装校验、版本核对，测试打印功能，与研发同事沟通，按照测试指引校验通过截图_deepin-terminal_20240927135628