IABSD.fr/ports/print/cups/patches/patch-backend_ipp_c

Branch : - branch - master - tag -

• Show log

  Commit

• Author : ajacoutot
  Date : 2026-04-18 05:38:41
  Hash : ffffef33
  Message : SECURITY update to cups-2.4.17. - CVE-2026-27447: The scheduler treated local user and group names as case-insensitive. - CVE-2026-34978: The RSS notifier could write outside the scheduler's RSS directory. - CVE-2026-34980: The scheduler did not filter control characters from option values. - CVE-2026-34979: The scheduler did not always allocate enough memory for a job's options string. - CVE-2026-34990: The scheduler incorrectly allowed local certificates over the loopback interface. - CVE-2026-39314: Fixed the range check for job password strings. - CVE-2026-39316: Fixed a printer subscription bug in the scheduler. - CVE-2026-NNNNN: Fixed a SNMP string conversion bug in the backends.

• print/cups/patches/patch-backend_ipp_c

• Increase timeout for the PPD file to be copied so that it doesn't fail
  on low-end configurations.
  
  Index: backend/ipp.c
  --- backend/ipp.c.orig
  +++ backend/ipp.c
  @@ -677,7 +677,7 @@ main(int  argc,				/* I - Number of command-line args 
   
     http = httpConnect2(hostname, port, addrlist, AF_UNSPEC, cupsEncryption(), 1,
                         0, NULL);
  -  httpSetTimeout(http, 30.0, timeout_cb, NULL);
  +  httpSetTimeout(http, 90.0, timeout_cb, NULL);
   
    /*
     * See if the printer supports SNMP...
  @@ -2565,7 +2565,7 @@ monitor_printer(
   
     http = httpConnect2(monitor->hostname, monitor->port, NULL, AF_UNSPEC,
                         monitor->encryption, 1, 0, NULL);
  -  httpSetTimeout(http, 30.0, timeout_cb, NULL);
  +  httpSetTimeout(http, 90.0, timeout_cb, NULL);
     if (device_username[0])
       cupsSetUser(device_username);