• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1CHANGES - 2.3.3 - 2020-04-24
2============================
3
4Changes in CUPS v2.3.3
5----------------------
6
7- CVE-2020-3898: The `ppdOpen` function did not handle invalid UI
8  constraint.  `ppdcSource::get_resolution` function did not handle
9  invalid resolution strings.
10- CVE-2019-8842: The `ippReadIO` function may under-read an extension
11  field.
12- Fixed WARNING_OPTIONS support for GCC 9.x
13
14Changes in CUPS v2.3.2
15----------------------
16
17- Localization updates.
18
19
20Changes in CUPS v2.3.1
21----------------------
22
23- Documentation updates (Issue #5661, #5674, #5682)
24- CVE-2019-2228: The `ippSetValuetag` function did not validate the default
25  language value.
26- Fixed a crash bug in the web interface (Issue #5621)
27- The PPD cache code now looks up page sizes using their dimensions
28  (Issue #5633)
29- PPD files containing "custom" option keywords did not work (Issue #5639)
30- Added a workaround for the scheduler's systemd support (Issue #5640)
31- On Windows, TLS certificates generated on February 29 would likely fail
32  (Issue #5643)
33- Added a DigestOptions directive for the `client.conf` file to control whether
34  MD5-based Digest authentication is allowed (Issue #5647)
35- Fixed a bug in the handling of printer resource files (Issue #5652)
36- The libusb-based USB backend now reports an error when the distribution
37  permissions are wrong (Issue #5658)
38- Added paint can labels to Dymo driver (Issue #5662)
39- The `ippeveprinter` program now supports authentication (Issue #5665)
40- The `ippeveprinter` program now advertises DNS-SD services on the correct
41  interfaces, and provides a way to turn them off (Issue #5666)
42- The `--with-dbusdir` option was ignored by the configure script (Issue #5671)
43- Sandboxed applications were not able to get the default printer (Issue #5676)
44- Log file access controls were not preserved by `cupsctl` (Issue #5677)
45- Default printers set with `lpoptions` did not work in all cases (Issue #5681,
46  Issue #5683, Issue #5684)
47- Fixed an error in the jobs web interface template (Issue #5694)
48- Fixed an off-by-one error in `ippEnumString` (Issue #5695)
49- Fixed some new compiler warnings (Issue #5700)
50- Fixed a few issues with the Apple Raster support (rdar://55301114)
51- The IPP backend did not detect all cases where a job should be retried using
52  a raster format (rdar://56021091)
53- Fixed spelling of "fold-accordion".
54- Fixed the default common name for TLS certificates used by `ippeveprinter`.
55- Fixed the option names used for IPP Everywhere finishing options.
56- Added support for the second roll of the DYMO Twin/DUO label printers.
57
58
59Changes in CUPS v2.3.0
60----------------------
61
62- CVE-2019-8696 and CVE-2019-8675: Fixed SNMP buffer overflows (rdar://51685251)
63- Added a GPL2/LGPL2 exception to the new CUPS license terms.
64- Documentation updates (Issue #5604)
65- Localization updates (Issue #5637)
66- Fixed a bug in the scheduler job cleanup code (Issue #5588)
67- Fixed builds when there is no TLS library (Issue #5590)
68- Eliminated some new GCC compiler warnings (Issue #5591)
69- Removed dead code from the scheduler (Issue #5593)
70- "make" failed with GZIP options (Issue #5595)
71- Fixed potential excess logging from the scheduler when removing job files
72  (Issue #5597)
73- Fixed a NULL pointer dereference bug in `httpGetSubField2` (Issue #5598)
74- Added FIPS-140 workarounds for GNU TLS (Issue #5601, Issue #5622)
75- The scheduler no longer provides a default value for the description
76  (Issue #5603)
77- The scheduler now logs jobs held for authentication using the error level so
78  it is clear what happened (Issue #5604)
79- The `lpadmin` command did not always update the PPD file for changes to the
80  `cupsIPPSupplies` and `cupsSNMPSupplies` keywords (Issue #5610)
81- The scheduler now uses both the group's membership list as well as the
82  various OS-specific membership functions to determine whether a user belongs
83  to a named group (Issue #5613)
84- Added USB quirks rule for HP LaserJet 1015 (Issue #5617)
85- Fixed some PPD parser issues (Issue #5623, Issue #5624)
86- The IPP parser no longer allows invalid member attributes in collections
87  (Issue #5630)
88- The configure script now treats the "wheel" group as a potential system
89  group (Issue #5638)
90- Fixed a USB printing issue on macOS (rdar://31433931)
91- Fixed IPP buffer overflow (rdar://50035411)
92- Fixed memory disclosure issue in the scheduler (rdar://51373853)
93- Fixed DoS issues in the scheduler (rdar://51373929)
94- Fixed an issue with unsupported "sides" values in the IPP backend
95  (rdar://51775322)
96- The scheduler would restart continuously when idle and printers were not
97  shared (rdar://52561199)
98- Fixed an issue with `EXPECT !name WITH-VALUE ...` tests.
99- Fixed a command ordering issue in the Zebra ZPL driver.
100- Fixed a memory leak in `ppdOpen`.
101
102
103Changes in CUPS v2.3rc1
104-----------------------
105
106- The `cups-config` script no longer adds extra libraries when linking against
107  shared libraries (Issue #5261)
108- The supplied example print documents have been optimized for size
109  (Issue #5529)
110- The `cupsctl` command now prevents setting "cups-files.conf" directives
111  (Issue #5530)
112- The "forbidden" message in the web interface is now explained (Issue #5547)
113- The footer in the web interface covered some content on small displays
114  (Issue #5574)
115- The libusb-based USB backend now enforces read limits, improving print speed
116  in many cases (Issue #5583)
117- The `ippeveprinter` command now looks for print commands in the "command"
118  subdirectory.
119- The `ipptool` command now supports `$date-current` and `$date-start` variables
120  to insert the current and starting date and time values, as well as ISO-8601
121  relative time values such as "PT30S" for 30 seconds in the future.
122
123
124Changes in CUPS v2.3b8
125----------------------
126
127- Media size matching now uses a tolerance of 0.5mm (rdar://33822024)
128- The lpadmin command would hang with a bad PPD file (rdar://41495016)
129- Fixed a potential crash bug in cups-driverd (rdar://46625579)
130- Fixed a performance regression with large PPDs (rdar://47040759)
131- Fixed a memory reallocation bug in HTTP header value expansion
132  (rdar://problem/50000749)
133- Timed out job submission now yields an error (Issue #5570)
134- Restored minimal support for the `Emulators` keyword in PPD files to allow
135  old Samsung printer drivers to continue to work (Issue #5562)
136- The scheduler did not encode octetString values like "job-password" correctly
137  for the print filters (Issue #5558)
138- The `cupsCheckDestSupported` function did not check octetString values
139  correctly (Issue #5557)
140- Added support for `UserAgentTokens` directive in "client.conf" (Issue #5555)
141- Updated the systemd service file for cupsd (Issue #5551)
142- The `ippValidateAttribute` function did not catch all instances of invalid
143  UTF-8 strings (Issue #5509)
144- Fixed an issue with the self-signed certificates generated by GNU TLS
145  (Issue #5506)
146- Fixed a potential memory leak when reading at the end of a file (Issue #5473)
147- Fixed potential unaligned accesses in the string pool (Issue #5474)
148- Fixed a potential memory leak when loading a PPD file (Issue #5475)
149- Added a USB quirks rule for the Lexmark E120n (Issue #5478)
150- Updated the USB quirks rule for Zebra label printers (Issue #5395)
151- Fixed a compile error on Linux (Issue #5483)
152- The lpadmin command, web interface, and scheduler all queried an IPP
153  Everywhere printer differently, resulting in different PPDs for the same
154  printer (Issue #5484)
155- The web interface no longer provides access to the log files (Issue #5513)
156- Non-Kerberized printing to Windows via IPP was broken (Issue #5515)
157- Eliminated use of private headers and some deprecated macOS APIs (Issue #5516)
158- The scheduler no longer stops a printer if an error occurs when a job is
159  canceled or aborted (Issue #5517)
160- Added a USB quirks rule for the DYMO 450 Turbo (Issue #5521)
161- Added a USB quirks rule for Xerox printers (Issue #5523)
162- The scheduler's self-signed certificate did not include all of the alternate
163  names for the server when using GNU TLS (Issue #5525)
164- Fixed compiler warnings with newer versions of GCC (Issue #5532, Issue #5533)
165- Fixed some PPD caching and IPP Everywhere PPD accounting/password bugs
166  (Issue #5535)
167- Fixed `PreserveJobHistory` bug with time values (Issue #5538)
168- The scheduler no longer advertises the HTTP methods it supports (Issue #5540)
169- Localization updates (Issue #5461, Issues #5471, Issue #5481, Issue #5486,
170  Issue #5489, Issue #5491, Issue #5492, Issue #5493, Issue #5494, Issue #5495,
171  Issue #5497, Issue #5499, Issue #5500, Issue #5501, Issue #5504)
172- The scheduler did not always idle exit as quickly as it could.
173- Added a new `ippeveprinter` command based on the old ippserver sample code.
174
175
176Changes in CUPS v2.3b7
177----------------------
178
179- Fixed some build failures (Issue #5451, Issue #5463)
180- Running ppdmerge with the same input and output filenames did not work as
181  advertised (Issue #5455)
182
183
184Changes in CUPS v2.3b6
185----------------------
186
187- Localization update (Issue #5339, Issue #5348, Issue #5362, Issue #5408,
188  Issue #5410)
189- Documentation updates (Issue #5369, Issue #5402, Issue #5403, Issue #5404)
190- CVE-2018-4300: Linux session cookies used a predictable random number seed.
191- All user commands now support the `--help` option (Issue #5326)
192- The `lpoptions` command now works with IPP Everywhere printers that have not
193  yet been added as local queues (Issue #5045)
194- The lpadmin command would create a non-working printer in some error cases
195  (Issue #5305)
196- The scheduler would crash if an empty `AccessLog` directive was specified
197  (Issue #5309)
198- The scheduler did not idle-exit on some Linux distributions (Issue #5319)
199- Fixed a regression in the changes to ippValidateAttribute (Issue #5322,
200  Issue #5330)
201- Fixed a crash bug in the Epson dot matrix driver (Issue #5323)
202- Automatic debug logging of job errors did not work with systemd (Issue #5337)
203- The web interface did not list the IPP Everywhere "driver" (Issue #5338)
204- The scheduler did not report all of the supported job options and values
205  (Issue #5340)
206- The IPP Everywhere "driver" now properly supports face-up printers
207  (Issue #5345)
208- Fixed some typos in the label printer drivers (Issue #5350)
209- Setting the `Community` name to the empty string in `snmp.conf` now disables
210  SNMP supply level monitoring by all the standard network backends
211  (Issue #5354)
212- Multi-file jobs could get stuck if the backend failed (Issue #5359,
213  Issue #5413)
214- The IPP Everywhere "driver" no longer does local filtering when printing to
215  a shared CUPS printer (Issue #5361)
216- The lpadmin command now correctly reports IPP errors when configuring an
217  IPP Everywhere printer (Issue #5370)
218- Fixed some memory leaks discovered by Coverity (Issue #5375)
219- The PPD compiler incorrectly terminated JCL options (Issue #5379)
220- The cupstestppd utility did not generate errors for missing/mismatched
221  CloseUI/JCLCloseUI keywords (Issue #5381)
222- The scheduler now reports the actual location of the log file (Issue #5398)
223- Added USB quirk rules (Issue #5395, Issue #5420, Issue #5443)
224- The generated PPD files for IPP Everywhere printers did not contain the
225  cupsManualCopies keyword (Issue #5433)
226- Kerberos credentials might be truncated (Issue #5435)
227- The handling of `MaxJobTime 0` did not match the documentation (Issue #5438)
228- Fixed a bug adding a queue with the `-E` option (Issue #5440)
229- The `cupsaddsmb` program has been removed (Issue #5449)
230- The `cupstestdsc` program has been removed (Issue #5450)
231- The scheduler was being backgrounded on macOS, causing applications to spin
232  (rdar://40436080)
233- The scheduler did not validate that required initial request attributes were
234  in the operation group (rdar://41098178)
235- Authentication in the web interface did not work on macOS (rdar://41444473)
236- Fixed an issue with HTTP Digest authentication (rdar://41709086)
237- The scheduler could crash when job history was purged (rdar://42198057)
238- Fixed a crash bug when mapping PPD duplex options to IPP attributes
239  (rdar://46183976)
240- Fixed a memory leak for some IPP (extension) syntaxes.
241- The `cupscgi`, `cupsmime`, and `cupsppdc` support libraries are no longer
242  installed as shared libraries.
243- The `snmp` backend is now deprecated.
244
245
246Changes in CUPS v2.3b5
247----------------------
248
249- The `ipptool` program no longer checks for duplicate attributes when running
250  in list or CSV mode (Issue #5278)
251- The `cupsCreateJob`, `cupsPrintFile2`, and `cupsPrintFiles2` APIs did not use
252  the supplied HTTP connection (Issue #5288)
253- Fixed another crash in the scheduler when adding an IPP Everywhere printer
254  (Issue #5290)
255- Added a workaround for certain web browsers that do not support multiple
256  authentication schemes in a single response header (Issue #5289)
257- Fixed policy limits containing the `All` operation (Issue #5296)
258- The scheduler was always restarted after idle-exit with systemd (Issue #5297)
259- Added a USB quirks rule for the HP LaserJet P1102 (Issue #5310)
260- The mailto notifier did not wait for the welcome message (Issue #5312)
261- Fixed a parsing bug in the pstops filter (Issue #5321)
262- Documentation updates (Issue #5299, Issue #5301, Issue #5306)
263- Localization updates (Issue #5317)
264- The scheduler allowed environment variables to be specified in the
265  `cupsd.conf` file (rdar://37836779, rdar://37836995, rdar://37837252,
266  rdar://37837581)
267- Fax queues did not support pause (p) or wait-for-dialtone (w) characters
268  (rdar://39212256)
269- The scheduler did not validate notify-recipient-uri values properly
270  (rdar://40068936)
271- The IPP parser allowed invalid group tags (rdar://40442124)
272- Fixed a parsing bug in the new authentication code.
273
274
275Changes in CUPS v2.3b4
276----------------------
277
278- NOTICE: Printer drivers are now deprecated (Issue #5270)
279- Kerberized printing to another CUPS server did not work correctly
280  (Issue #5233)
281- Fixed printing to some IPP Everywhere printers (Issue #5238)
282- Fixed installation of filters (Issue #5247)
283- The scheduler now supports using temporary print queues for older IPP/1.1
284  print queues like those shared by CUPS 1.3 and earlier (Issue #5241)
285- Star Micronics printers need the "unidir" USB quirk rule (Issue #5251)
286- Documentation fixes (Issue #5252)
287- Fixed a compile issue when PAM is not available (Issue #5253)
288- Label printers supported by the rastertolabel driver don't support SNMP, so
289  don't delay printing to test it (Issue #5256)
290- The scheduler could crash while adding an IPP Everywhere printer (Issue #5258)
291- The Lexmark Optra E310 printer needs the "no-reattach" USB quirk rule
292  (Issue #5259)
293- Systemd did not restart cupsd when configuration changes were made that
294  required a restart (Issue #5263)
295- The IPP Everywhere PPD generator did not include the `cupsJobPassword`
296  keyword, when supported (Issue #5265)
297- Fixed an Avahi crash bug in the scheduler (Issue #5268)
298- Raw print queues are now deprecated (Issue #5269)
299- Fixed an RPM packaging problem (Issue #5276)
300- The IPP backend did not properly detect failed PDF prints (rdar://34055474)
301- TLS connections now properly timeout (rdar://34938533)
302- Temp files could not be created in some sandboxed applications
303  (rdar://37789645)
304- The ipptool `--ippserver` option did not encode out-of-band attributes
305  correctly.
306- Added public `cupsEncodeOption` API for encoding a single option as an IPP
307  attribute.
308- Removed support for the `-D_PPD_DEPRECATED=""` developer cheat - the PPD API
309  should no longer be used.
310- Removed support for `-D_IPP_PRIVATE_STRUCTURES=1` developer cheat - the IPP
311  accessor functions should be used instead.
312
313
314Changes in CUPS v2.3b3
315----------------------
316
317- More fixes for printing to old CUPS servers (Issue #5211)
318- The IPP Everywhere PPD generator did not support deep grayscale or 8-bit per
319  component AdobeRGB (Issue #5227)
320- Additional changes for the scheduler to substitute default values for invalid
321  job attributes when running in "relaxed conformance" mode (Issue #5229)
322- Localization changes (Issue #5232, rdar://37068158)
323- The `cupsCopyDestInfo` function did not work with all print queues
324  (Issue #5235)
325
326
327Changes in CUPS v2.3b2
328----------------------
329
330- Localization changes (Issue #5210)
331- Build fixes (Issue #5217)
332- IPP Everywhere PPDs were not localized to English (Issue #5205)
333- The `cupsGetDests` and `cupsEnumDests` functions no longer filter out local
334  print services like IPP USB devices (Issue #5206)
335- The `cupsCopyDest` function now correctly copies the `is_default` value
336  (Issue #5208)
337- Printing to old CUPS servers has been fixed (Issue #5211)
338- The `ppdInstallableConflict` tested too many constraints (Issue #5213)
339- All HTTP field values can now be longer than `HTTP_MAX_VALUE` bytes
340  (Issue #5216)
341- Added a USB quirk rule for Canon MP280 series printers (Issue #5221)
342- The `cupsRasterWritePixels` function did not correctly swap bytes for some
343  formats (Issue #5225)
344- Fixed an issue with mapping finishing options (rdar://34250727)
345- The `ppdLocalizeIPPReason` function incorrectly returned a localized version
346  of "none" (rdar://36566269)
347- The scheduler did not add ".local" to the default DNS-SD host name when
348  needed.
349
350
351Changes in CUPS v2.3b1
352----------------------
353
354- CUPS is now provided under the Apache License, Version 2.0.
355- Documentation updates (Issue #4580, Issue #5177, Issue #5192)
356- The `cupsCopyDestConflicts` function now handles collection attribute
357  ("media-col", "finishings-col", etc.) constraints (Issue #4096)
358- The `lpoptions` command incorrectly saved default options (Issue #4717)
359- The `lpstat` command now reports when new jobs are being held (Issue #4761)
360- The `ippfind` command now supports finding printers whose name starts with an
361  underscore (Issue #4833)
362- The CUPS library now supports the latest HTTP Digest authentication
363  specification including support for SHA-256 (Issue #4862)
364- The scheduler now supports the "printer-id" attribute (Issue #4868)
365- No longer support backslash, question mark, or quotes in printer names
366  (Issue #4966)
367- The scheduler no longer logs pages as they are printed, instead just logging
368  a total of the pages printed at job completion (Issue #4991)
369- Dropped RSS subscription management from the web interface (Issue #5012)
370- Bonjour printer sharing now uses the DNS-SD hostname (or ServerName value if
371  none is defined) when registering shared printers on the network (Issue #5071)
372- The `ipptool` command now supports writing `ippserver` attributes files
373  (Issue #5093)
374- The `lp` and `lpr` commands now provide better error messages when the default
375  printer cannot be found (Issue #5096)
376- The `lpadmin` command now provides a better error message when an unsupported
377  System V interface script is used (Issue #5111)
378- The scheduler did not write out dirty configuration and state files if there
379  were open client connections (Issue #5118)
380- The `SSLOptions` directive now supports `MinTLS` and `MaxTLS` options to
381  control the minimum and maximum TLS versions that will be allowed,
382  respectively (Issue #5119)
383- Dropped hard-coded CGI scripting language support (Issue #5124)
384- The `cupsEnumDests` function did not include options from the lpoptions
385  files (Issue #5144)
386- Fixed the `ippserver` sample code when threading is disabled or unavailable
387  (Issue #5154)
388- Added label markup to checkbox and radio button controls in the web interface
389  templates (Issue #5161)
390- Fixed group validation on OpenBSD (Issue #5166)
391- Improved IPP Everywhere media support, including a new
392  `cupsAddDestMediaOptions` function (Issue #5167)
393- IPP Everywhere PPDs now include localizations of printer-specific media types,
394  when available (Issue #5168)
395- The cups-driverd program incorrectly stopped scanning PPDs as soon as a loop
396  was seen (Issue #5170)
397- IPP Everywhere PPDs now support IPP job presets (Issue #5179)
398- IPP Everywhere PPDs now support finishing templates (Issue #5180)
399- Fixed a journald support bug in the scheduler (Issue #5181)
400- Fixed PAM module detection and added support for the common PAM definitions
401  (Issue #5185)
402- The scheduler now substitutes default values for invalid job attributes when
403  running in "relaxed conformance" mode (Issue #5186)
404- The scheduler did not work with older versions of uClibc (Issue #5188)
405- The scheduler now generates a strings file for localizing PPD options
406  (Issue #5194)
407