Fedora Core 3: 2004-575 Moderate: CUPS Buffer Overflow Exploit

The Common UNIX Printing System provides a portable printing layer for

UNIX� operating systems. It has been developed by Easy Software Products

to promote a standard printing solution for all UNIX vendors and users.

CUPS provides the System V and Berkeley command-line interfaces.

This package fixes a buffer overflow which may possibly allow attackers

to execute arbitrary code as the "lp" user. The Common Vulnerabilities

and Exposures projects (cve.mitre.org) has assigned the name

CAN-2004-1125 to this issue.

- iDefense security fix for CAN-2004-1125 (bug #143567).

* Wed Dec 22 2004 Tim Waugh

- Make cancel-cups(1) man page point to lp-cups(1) not lp(1) (bug #136973).

50ce87c43b1817d0d21c556177ac20a3 SRPMS/cups-1.1.22-0.rc1.8.2.src.rpm

1fc1a75c1cb6f2bd0100563ac75e895e x86_64/cups-1.1.22-0.rc1.8.2.x86_64.rpm

61056a1e8758fea4d13dff05202780bb x86_64/cups-devel-1.1.22-0.rc1.8.2.x86_64.rpm

87f4309c88a77e31b45e591a9bc739e7 x86_64/cups-libs-1.1.22-0.rc1.8.2.x86_64.rpm

1775259824cfd6c5055414e5d6dcf9a0 x86_64/debug/cups-debuginfo-1.1.22-0.rc1.8.2.x86_64.rpm

d9ff97740b6672e334184c4227fab9da x86_64/cups-libs-1.1.22-0.rc1.8.2.i386.rpm

cb6ec0adf1cbcc6fcbb2f3f477d8ab1d i386/cups-1.1.22-0.rc1.8.2.i386.rpm

196e60c47656dbfebb4ddae508f9bded i386/cups-devel-1.1.22-0.rc1.8.2.i386.rpm

d9ff97740b6672e334184c4227fab9da i386/cups-libs-1.1.22-0.rc1.8.2.i386.rpm

8ff2744a3d40abf63560364445e2d89a i386/debug/cups-debuginfo-1.1.22-0.rc1.8.2.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.