USN-563-1: CUPS vulnerabilities
9 January 2008
- cupsys -
Wei Wang discovered that the SNMP discovery backend did not
correctly calculate the length of strings. If a user were tricked into
scanning for printers, a remote attacker could send a specially crafted
packet and possibly execute arbitrary code.
Elias Pipping discovered that temporary files were not handled safely
in certain situations when converting PDF to PS. A local attacker could
cause a denial of service.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system upgrade is sufficient to effect the