{"id":"DSA-1933-1","summary":"cups cupsys - cross-site scripting","modified":"2026-03-09T01:15:38.408626786Z","published":"2009-11-10T00:00:00Z","upstream":["CVE-2009-2820","DEBIAN-CVE-2009-2820"],"affected":[{"package":{"name":"cupsys","ecosystem":"Debian:4.0","purl":"pkg:deb/debian/cupsys?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.7-4+etch9"}]}],"versions":["1.2.7-4","1.2.7-4+etch8","1.2.7-4etch1","1.2.7-4etch2","1.2.7-4etch3","1.2.7-4etch4","1.2.7-4etch5","1.2.7-4etch6","1.2.7-4etch7"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-1933-1.json"}},{"package":{"name":"cups","ecosystem":"Debian:5.0","purl":"pkg:deb/debian/cups?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3.8-1+lenny7"}]}],"versions":["1.3.8-1+lenny6","1.3.8-1lenny4.1","1.3.8-1lenny5"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-1933-1.json"}}],"schema_version":"1.7.3"}