Detections
Analytics

Fedora 21 : cups-x2go-3.0.1.3-1.fc21 (2015-10450)

high Nessus Plugin ID 84678

Language:

Synopsis

The remote Fedora host is missing a security update.

Description

- New upstream version (3.0.1.2) :

 - cups-x2go{,.conf}: port to File::Temp. Use Text::ParseWords to split up the ps2pdf command line correctly. Don't use system() but IPC::Open2::open2().
 Capture the ps2pdf program's stdout and write it to the temporary file handle 'manually'. Should fix problems reported by Jan Bi on IRC.

 - cups-x2go: fix commented out second ps2pdf definition to output PDF data to stdout.

 - New upstream version (3.0.1.3) :

 - cups-x2go: import tempfile() function from File::Temp module.

 - cups-x2go: only repeat the last X, not the whole '.pdfX' string (or the like.)

 - cups-x2go: actually print 'real' executed command instead of the 'original' one with placeholders.

 - cups-x2go: read output from ghostscript, don't write a filehandle to the temporary file. Fixes a hanging ghostscript call and... well... random junk, instead of a 'real' PDF file.

 - cups-x2go: use parentheses around function arguments.

 - cups-x2go: fix binmode() call, :raw layer is implicit.

 - cups-x2go: fix print call... Does not allow to separate parameters with a comma.

 - cups-x2go: add correct :raw layer to binmode calls.

 - cups-x2go: fix tiny typo.

 - cups-x2go: read data from GS and STDIN in chunks of 8 kbytes, instead of everything at once. Handles large print jobs gracefully.

 - cups-x2go: add parentheses to close() calls.

 - cups-x2go: delete PDF and title temporary files automatically.

 - cups-x2go: unlink PS temporary file on-demand in END block. Also move closelog to END block, because we want to print diagnosis messages in the END block.

 - cups-x2go: don't use unlink() explicitly. Trust File::Temp and our END block to clean up correctly.

 - cups-x2go: there is no continue in perl for stepping forward a loop. Still not. I keep forgetting that. Use next. (Partly) Fixes: #887.

 - cups-x2go: use the same temp file template for PS, PDF and title files. Use appropriate suffixes if necessary when generating PDF and title temp files. (Fully) Fixes: #887. Update to 3.0.1.1 :

 - Add a short README that provides some getting started information. Update to 3.0.1.1 :

 - Add a short README that provides some getting started information.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected cups-x2go package.

See Also

http://www.nessus.org/u?fc560eb4

Plugin Details

Severity: High

ID: 84678

File Name: fedora_2015-10450.nasl

Version: 2.4

Type: local

Agent: unix

Published: 7/14/2015

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:cups-x2go, cpe:/o:fedoraproject:fedora:21

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 6/22/2015

Reference Information

FEDORA: 2015-10450