Other news is that cupsddk is now being part of the main CUPS package, so we don't need separate package, thus cupsddk package is now removed. OpenSSH is also upgraded to the latest version, which is a major upgrade.
Here's the latest -Current changelog:
Mon Mar 8 20:49:02 UTC 2010
The CUPS Driver Development Kit (DDK) is part of the main CUPS package now.
This update addresses a few security issues.
mod_ssl: A partial fix for the TLS renegotiation prefix injection attack by rejecting any client-initiated renegotiations.
mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent when request headers indicate a request body is incoming; not a case of HTTP_INTERNAL_SERVER_ERROR.
mod_isapi: Do not unload an isapi .dll module until the request processing is completed, avoiding orphaned callback pointers.
[This is the most serious flaw, but does not affect Linux systems]
For more information, see:
(* Security fix *)