Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 531
Alerts This Week
Warning Icon 1 531

Ubuntu 15.04 USN-2659-1 Critical: cups-filters Denial Of Service

ubuntu
Calendar Grey July 6, 2015
Scroller Ubuntu Esm H88
Learn about Ubuntu Security Notice USN-2659-1, detailing severe vulnerabilities in cups-filters across various Ubuntu versions, and find essential mitigation advice
cups-filters could be made to crash or run programs as the lp user if it processed a specially crafted print job.

Summary

cups-filters could be made to crash or run programs as the lp user if it

processed a specially crafted print job.

Software Description:

- cups-filters: OpenPrinting CUPS Filters

Details:

Petr Sklenar discovered that the cups-filters texttopdf filter incorrectly

handled line sizes. A remote attacker could use this issue to cause a

denial of service, or possibly execute arbitrary code as the lp user.

(CVE-2015-3258, CVE-2015-3279)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.04:
  cups-filters                    1.0.67-0ubuntu2.2

Ubuntu 14.10:
  cups-filters                    1.0.61-0ubuntu2.3

Ubuntu 14.04 LTS:
  cups-filters                    1.0.52-0ubuntu1.5

Ubuntu 12.04 LTS:
  cups-filters                    1.0.18-0ubuntu0.4

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-2659-1

CVE-2015-3258, CVE-2015-3279

Severity
critical
Lowest
Low
Medium
High
Critical

July 06, 2015

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.