Описание
ELSA-2009-1082: cups security update (IMPORTANT)
[1:1.3.7-8:.6]
- Applied patch to fix CVE-2009-0791 (bug #491840).
[1:1.3.7-8:.5]
- Applied patch to fix CVE-2009-0949 (bug #500972)
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
cups
1.3.7-8.el5_3.6
cups-devel
1.3.7-8.el5_3.6
cups-libs
1.3.7-8.el5_3.6
cups-lpd
1.3.7-8.el5_3.6
Oracle Linux i386
cups
1.3.7-8.el5_3.6
cups-devel
1.3.7-8.el5_3.6
cups-libs
1.3.7-8.el5_3.6
cups-lpd
1.3.7-8.el5_3.6
Связанные CVE
Связанные уязвимости
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 do ...
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.