LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

cups: buffer overflows

Package(s):cups CVE #(s):CVE-2008-0053 CVE-2008-1373
Created:April 1, 2008 Updated:April 9, 2008
Description: Two overflows were discovered in the HP-GL/2-to-PostScript filter. An attacker could create a malicious HP-GL/2 file that could possibly execute arbitrary code as the "lp" user if the file is printed. A buffer overflow flaw was discovered in the GIF decoding routines used by CUPS image converting filters "imagetops" and "imagetoraster". An attacker could create a malicious GIF file that could possibly execute arbitrary code as the "lp" user if the file was printed.
Alerts:
Red Hat RHSA-2008:0192-01 2008-04-01
Red Hat RHSA-2008:0206-01 2008-04-01
Gentoo 200804-01 2008-04-01
Mandriva MDVSA-2008:081 2007-04-02
Slackware SSA:2008-094-01 2008-04-03
Ubuntu USN-598-1 2008-04-02
SuSE SUSE-SA:2008:020 2008-04-04
rPath rPSA-2008-0136-1 2008-04-04
Fedora FEDORA-2008-2897 2008-04-08
Fedora FEDORA-2008-2131 2008-04-08
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.