apticron report [Wed, 11 Jul 2018 22:38:07 +0200] ======================================================================== apticron has detected that some packages need upgrading on: quigon.federez.net [ 160.228.155.65 ] The following packages are currently pending an upgrade: libcups2 2.2.1-8+deb9u2 libcupsimage2 2.2.1-8+deb9u2 ======================================================================== Package Details: apt-listchanges : Lecture des fichiers de modifications (« changelog »)... apt-listchanges : journaux des modifications (« changelogs ») ------------------------------------------------------------- --- Modifications pour cups (libcups2 libcupsimage2) --- cups (2.2.1-8+deb9u2) stretch-security; urgency=low * CVE-2018-6553: Fix AppArmor cupsd sandbox bypass due to use of hard links * Backport upstream fixes for: - CVE-2018-4180 Local Privilege Escalation to Root in dnssd Backend (CUPS_SERVERBIN) - CVE-2018-4181 Limited Local File Reads as Root via cupsd.conf Include Directive - CVE-2018-4182 cups-exec Sandbox Bypass Due to Insecure Error Handling - CVE-2018-4183 cups-exec Sandbox Bypass Due to Profile Misconfiguration - CVE-2017-15400: Restrict IPP Everywhere filters to only list supported PDLs to fix CRLF and Code Injection in Printer Zeroconfig -- Didier Raboud <odyx(a)debian.org> Wed, 11 Jul 2018 11:29:27 +0200 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on quigon.federez.net -- apticron