Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2009-0163

Published: 23 April 2009

Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted TIFF image, which is not properly handled by the (1) _cupsImageReadTIFF function in the imagetops filter and (2) imagetoraster filter, leading to a heap-based buffer overflow.

Notes

AuthorNote
kees
cups/CVE-2009-0163.patch
jdstrand
without a reproducer, AFAICS cups with libtiff should be vulnerable
as libtiff doesn't error out on images with a height (ImageLength) larger
than 0x3fffffff (2^30-1)

Priority

Medium

Status

Package Release Status
cups
Launchpad, Ubuntu, Debian
upstream Needs triage

dapper Does not exist

gutsy Does not exist

hardy Does not exist

intrepid
Released (1.3.9-2ubuntu9.1)
cupsys
Launchpad, Ubuntu, Debian
upstream Needs triage

dapper
Released (1.2.2-0ubuntu0.6.06.13)
gutsy
Released (1.3.2-1ubuntu7.10)
hardy
Released (1.3.7-1ubuntu3.4)
intrepid Does not exist