LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

cups: code execution

Package(s):cups CVE #(s):CVE-2010-2941
Created:October 29, 2010 Updated:March 2, 2011
Description: From the Red Hat advisory:

A use-after-free flaw was found in the way the CUPS server parsed Internet Printing Protocol (IPP) packets. A malicious user able to send IPP requests to the CUPS server could use this flaw to crash the CUPS server or, potentially, execute arbitrary code with the privileges of the CUPS server.

Alerts:
Debian DSA-2176-1 2011-03-02
SUSE SUSE-SR:2010:023 2010-12-08
openSUSE openSUSE-SU-2010:1018-1 2010-12-06
Slackware SSA:2010-333-01 2010-11-30
Fedora FEDORA-2010-17627 2010-11-11
Fedora FEDORA-2010-17615 2010-11-11
Fedora FEDORA-2010-17641 2010-11-11
Mandriva MDVSA-2010:234 2010-11-15
Mandriva MDVSA-2010:233 2010-11-15
Mandriva MDVSA-2010:232 2010-11-15
Red Hat RHSA-2010:0866-02 2010-11-10
Ubuntu USN-1012-1 2010-11-04
CentOS CESA-2010:0811 2010-11-01
Red Hat RHSA-2010:0811-01 2010-10-28
Gentoo 201207-10 2012-07-09
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds