[3.5] cups: A localhost.localdomain whitelist entry in valid_host() (CVE-2017-18190)
A localhost.localdomain whitelist entry in valid_host() in
scheduler/client.c in CUPS before 2.2.2 allows remote attackers to
execute arbitrary
IPP commands by sending POST requests to the CUPS daemon in conjunction
with DNS rebinding. The localhost.localdomain name is often
resolved via a DNS server (neither the OS nor the web browser is
responsible for ensuring that localhost.localdomain is 127.0.0.1).
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-18190
Patch:
https://github.com/apple/cups/commit/afa80cb2b457bf8d64f775bed307588610476c41
(from redmine: issue id 8585, created on 2018-02-27, closed on 2018-03-05)
- Relations:
- parent #8584 (closed)
- Changesets:
- Revision b57ce380 by Natanael Copa on 2018-02-27T16:49:21Z:
main/cups: security upgrade to 2.2.2 (CVE-2017-18190)
fixes #8585