Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

Fedora Core 2: 2004-559 Critical: CUPS Remote Code Execution

fedora
Calendar Grey December 17, 2004
Dist Fedora Esm H88
Essential modifications for CUPS tackle service interruption and remote execution vulnerabilities in Fedora Core 3.
Two security problems were found by Bartlomiej Sieka

Summary

The Common UNIX Printing System provides a portable printing layer for

UNIX� operating systems. It has been developed by Easy Software Products

to promote a standard printing solution for all UNIX vendors and users.

CUPS provides the System V and Berkeley command-line interfaces.

Two security problems were found by Bartlomiej Sieka. They concern the

lppasswd utility, which can be made to cause a denial of service, and the

hpgltops filter, which can be exploited to run code remotely as the user

"lp". These problems have both been fixed.

- Fixed STR #1023 (part of bug #143086).

- Fixed STR #1024 (rest of bug #143086).

8a690d9d0b537d0ca72200a66474576d SRPMS/cups-1.1.20-11.7.src.rpm

e79f880265fb552b3b84a7258ca8c5d3 x86_64/cups-1.1.20-11.7.x86_64.rpm

fb753144cce79f93d7543911df131622 x86_64/cups-devel-1.1.20-11.7.x86_64.rpm

bc8d1e9176f136e0d12a844d1b6a8376 x86_64/cups-libs-1.1.20-11.7.x86_64.rpm

309183e87f116bba1e2fba668b649b2a x86_64/debug/cups-debuginfo-1.1.20-11.7.x86_64.rpm

fa5f5d838e38a853e639376dda28a64c x86_64/cups-libs-1.1.20-11.7.i386.rpm

85f104ccde4ce12339c3fb2ebb0f8f06 i386/cups-1.1.20-11.7.i386.rpm

71ffccaa054acdfcf99d08594fe5ba1e i386/cups-devel-1.1.20-11.7.i386.rpm

fa5f5d838e38a853e639376dda28a64c i386/cups-libs-1.1.20-11.7.i386.rpm

ab5c8a57f1bae7f7d1437f094d1bebb9 i386/debug/cups-debuginfo-1.1.20-11.7.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cups
Version: 1.1.20
Release: 11.7
Summary: Common Unix Printing System

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here