Back to search
CVE-2018-6553
Published: Aug 10, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS.
| Vendor | Product | Versions |
|---|---|---|
n/a | cups | affected unspecified - < 2.2.7-1ubuntu2.1 |
n/a | cups | affected unspecified - < 2.2.4-7ubuntu3.1 |
n/a | cups | affected unspecified - < 2.1.3-4ubuntu0.5 |
n/a | cups | affected unspecified - < 1.7.2-0ubuntu1.10 |
References
USN-3713-1
vendor-advisory
x_refsource_UBUNTU
DSA-4243
vendor-advisory
x_refsource_DEBIAN
[debian-lts-announce] 20180714 [SECURITY] [DLA 1426-1] cups security update
mailing-list
x_refsource_MLIST
GLSA-201908-08
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now