Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Ubuntu 11.04 USN-1207-1 Critical: CUPS DoS Threat Details

Calendar Sep 14, 2011 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service security issue system update cups ubuntu software bug
An attacker could send crafted print jobs to CUPS and cause it to crash or run programs. 
=========================================================================Ubuntu Security Notice USN-1207-1
September 14, 2011

cups, cupsys vulnerabilities
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04 LTS
- Ubuntu 8.04 LTS

Summary:

An attacker could send crafted print jobs to CUPS and cause it to crash or
run programs.

Software Description:
- cups: Common UNIX Printing System(tm) - server
- cupsys: Common UNIX Printing System(tm) - server

Details:

Tomas Hoger discovered that the CUPS image library incorrectly handled LZW
streams. A remote attacker could use this flaw to cause a denial of service
or possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.04:
  libcupsimage2                   1.4.6-5ubuntu1.4

Ubuntu 10.10:
  libcupsimage2                   1.4.4-6ubuntu2.4

Ubuntu 10.04 LTS:
  libcupsimage2                   1.4.3-1ubuntu1.5

Ubuntu 8.04 LTS:
  libcupsimage2                   1.3.7-1ubuntu3.13

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-1207-1
  CVE-2011-2896, CVE-2011-3170

Package Information:
  https://launchpad.net/ubuntu/+source/cups/1.4.6-5ubuntu1.4
  https://launchpad.net/ubuntu/+source/cups/1.4.4-6ubuntu2.4
  https://launchpad.net/ubuntu/+source/cups/1.4.3-1ubuntu1.5
  https://launchpad.net/ubuntu/+source/cupsys/1.3.7-1ubuntu3.13

Ubuntu 11.04 USN-1207-1 Critical: CUPS DoS Threat Details

ubuntu
Calendar Grey September 14, 2011
Dist Ubuntu Esm H88
CUPS, the Common Unix Printing System, is crucial in Linux for managing printers, but it has vulnerabilities that can expose Ubuntu systems to threats.
An attacker could send crafted print jobs to CUPS and cause it to crash or run programs.

Summary

Topics%20covered

Topics Covered

security advisory denial of service security issue system update cups ubuntu software bug

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: libcupsimage2 1.4.6-5ubuntu1.4 Ubuntu 10.10: libcupsimage2 1.4.4-6ubuntu2.4 Ubuntu 10.04 LTS: libcupsimage2 1.4.3-1ubuntu1.5 Ubuntu 8.04 LTS: libcupsimage2 1.3.7-1ubuntu3.13 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-1207-1

CVE-2011-2896, CVE-2011-3170

Severity
critical
Lowest
Low
Medium
High
Critical

September 14, 2011

Topics%20covered

Topics Covered

security advisory denial of service security issue system update cups ubuntu software bug

Package Information

https://launchpad.net/ubuntu/+source/cups/1.4.6-5ubuntu1.4 https://launchpad.net/ubuntu/+source/cups/1.4.4-6ubuntu2.4 https://launchpad.net/ubuntu/+source/cups/1.4.3-1ubuntu1.5 https://launchpad.net/ubuntu/+source/cupsys/1.3.7-1ubuntu3.13

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here