From 0da5cf63dd52e53576fdd7b85790c91d8acd0ae7 Mon Sep 17 00:00:00 2001
From: renmingshuai <renmingshuai@huawei.com>
Date: Mon, 31 May 2021 15:05:58 +0800
Subject: [PATCH] Fix CVE-2021-25317

---
 cups.spec | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/cups.spec b/cups.spec
index 204f8f7..6e6b2d7 100644
--- a/cups.spec
+++ b/cups.spec
@@ -2,7 +2,7 @@
 Name:    cups
 Epoch:   1
 Version: 2.3.3
-Release: 5
+Release: 6
 Summary: CUPS is the standards-based, open source printing system for linux operating systems.
 License: GPLv2+ and LGPLv2+ with exceptions and AML
 Url:     http://www.cups.org/
@@ -290,7 +290,7 @@ rm -f %{_exec_prefix}/lib/cups/backend/smb
 %{_datadir}/cups/templates/pt_BR/*.tmpl
 %dir %attr(1770,root,lp) %{_localstatedir}/spool/cups/tmp
 %dir %attr(0710,root,lp) %{_localstatedir}/spool/cups
-%dir %attr(0755,lp,sys) %{_localstatedir}/log/cups
+%dir %attr(0755,root,lp) %{_localstatedir}/log/cups
 %{_datadir}/pixmaps/cupsprinter.png
 
 %{_datadir}/cups/drv/sample.drv
@@ -332,6 +332,12 @@ rm -f %{_exec_prefix}/lib/cups/backend/smb
 %doc %{_datadir}/%{name}/www/apple-touch-icon.png
 
 %changelog
+* Mon May 31 2021 wangkerong <wangkerong@huawei.com> - 2.3.3-6
+- Type:CVE
+- CVE:CVE-2021-25317
+- SUG:NA
+- DESC:CVE-2021-25317 cups:insecure permissiond of /var/log/cups allows for symlink attack
+
 * Tue May 25 2021 liuyumeng <liuyumeng@huawei.com> - 2.3.3-5
 - remove unused ncp backend
 
-- 
Gitee