New User, Welcome!     Login

<< Previous Next >>

CUPS

[ MDVSA-2010:233 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2010:233
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : November 15, 2010
 Affected: 2010.1
 _______________________________________________________________________

 Problem Description:

Secunia Research: CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow

====================================================================== 

                     Secunia Research 17/04/2009

       - CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow -

====================================================================== 
Table of Contents

Affected Software....................................................1

[ GLSA 200812-11 ] CUPS: Multiple vulnerabilities

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                              http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    Severity: High
       Title: CUPS: Multiple vulnerabilities
        Date: December 10, 2008
        Bugs: #238976, #249727
          ID: 200812-11

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

[ MDVSA-2008:211 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2008:211
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : October 10, 2008
 Affected: 2007.1, 2008.0, 2008.1, 2009.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________

 Problem Description:

[USN-760-1] CUPS vulnerability

===========================================================
Ubuntu Security Notice USN-760-1             April 16, 2009
cups, cupsys vulnerability
CVE-2009-0163
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 7.10

[ MDVSA-2008:170 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2008:170
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : August 13, 2008
 Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0,
           Multi Network Firewall 2.0
 _______________________________________________________________________

[USN-539-1] CUPS vulnerability

=========================================================== 
Ubuntu Security Notice USN-539-1          November 06, 2007
cupsys vulnerability
CVE-2007-4351
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10

[ MDVSA-2011:147 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2011:147
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : October 11, 2011
 Affected: 2011.
 _______________________________________________________________________

 Problem Description:

[ MDVSA-2008:081 ] - Updated CUPS packages fix multiple vulnerabilities

 
 Mandriva Linux Security Advisory                         MDVSA-2008:081
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : April 2, 2008
 Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:

[SECURITY] [DSA 1773-1] New cups packages fix arbitrary code execution

Debian Security Advisory DSA-1773-1                  security@debian.org
http://www.debian.org/security/                      Steffen Joeris
April 17, 2009                        http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : cups
Vulnerability  : integer overflow
Problem type   : local (remote)
Debian-specific: no
CVE Id         : CVE-2009-0163

[SECURITY] [DSA 2007-1] New cups packages fix arbitrary code execution

Debian Security Advisory DSA-2007-1                    security@debian.org
http://www.debian.org/security/                                 Nico Golde
March 3rd, 2010                         http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : cups
Vulnerability  : format string vulnerability
Problem type   : local
Debian-specific: no
Debian bug     : none
CVE ID         : CVE-2010-0393

[ MDVSA-2008:051 ] - Updated cups packages fix vulnerabilities

 
 Mandriva Linux Security Advisory                         MDVSA-2008:051
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : February 26, 2008
 Affected: 2007.0, 2007.1, 2008.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:

[ MDKSA-2007:228 ] - Updated cups packages fix vulnerabilities

 
 Mandriva Linux Security Advisory                         MDKSA-2007:228
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : November 19, 2007
 Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:

[SECURITY] [DSA 1933-1] New cups packages fix cross-site scripting

Debian Security Advisory DSA-1933-1                  security@debian.org
http://www.debian.org/security/                      Steffen Joeris
November 10, 2009                     http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : cups
Vulnerability  : missing input sanitising
Problem type   : remote
Debian-specific: no
CVE Id         : CVE-2009-2820

rPSA-2008-0091-1 cups

Rating: Severe
Exposure Level Classification:
    Remote Deterministic Denial of Service
Updated Versions:
    cups=conary.rpath.com@rpl:1/1.1.23-14.6-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2283

References:

[ MDKSA-2007:204 ] - Updated cups packages fix vulnerability

 
 Mandriva Linux Security Advisory                         MDKSA-2007:204
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : November 1, 2007
 Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:

rPSA-2007-0154-1 cups poppler tetex tetex-afm tetex-dvips tetex-fonts tetex-latex tetex-xdvi

Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Remote System User Deterministic Privilege Escalation
Updated Versions:
    cups=/conary.rpath.com@rpl:devel//1/1.1.23-14.2-1
    poppler=/conary.rpath.com@rpl:devel//1/0.4.5-1.2-1
    tetex=/conary.rpath.com@rpl:devel//1/2.0.2-28.7-1
    tetex-afm=/conary.rpath.com@rpl:devel//1/2.0.2-28.7-1
    tetex-dvips=/conary.rpath.com@rpl:devel//1/2.0.2-28.7-1
    tetex-fonts=/conary.rpath.com@rpl:devel//1/2.0.2-28.7-1

[ MDVSA-2010:096 ] tetex

 
 The JBIG2 decoder in Xpdf 3.02pl2 and earlier allows remote attackers
 to cause a denial of service (crash) via a crafted PDF file that
 triggers a free of uninitialized memory (CVE-2009-0166).
 
 Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9,
 and probably other products, allows remote attackers to execute
 arbitrary code via a PDF file with crafted JBIG2 symbol dictionary
 segments (CVE-2009-0195).
 
 Buffer overflow in BibTeX 0.99 allows context-dependent attackers to

[USN-606-1] CUPS vulnerability

=========================================================== 
Ubuntu Security Notice USN-606-1               May 05, 2008
cupsys vulnerability
CVE-2008-1722
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 7.04

[SECURITY] [DSA 1530-1] New cupsys packages fix multiple vulnerabilities

Debian Security Advisory DSA-1530-1                  security@debian.org
http://www.debian.org/security/                           Noah Meyerhans
March 25, 2008                        http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : cupsys
Vulnerability  : multiple
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2008-0047 CVE-2008-0882
Debian Bug     : 472105 467653

[ MDKSA-2007:204-1 ] - Updated cups packages fix vulnerability

 
 Mandriva Linux Security Advisory                       MDKSA-2007:204-1
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : November 12, 2007
 Affected: 2008.0
 _______________________________________________________________________
 
 Problem Description:

[ MDVSA-2009:287-1 ] xpdf

 allow remote attackers to execute arbitrary code via a crafted PDF
 document that triggers a heap-based buffer overflow (CVE-2009-3606).
 
 Integer overflow in the ObjectStream::ObjectStream function in XRef.cc
 in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in
 GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote
 attackers to execute arbitrary code via a crafted PDF document that
 triggers a heap-based buffer overflow (CVE-2009-3608).
 
 Integer overflow in the ImageStream::ImageStream function in Stream.cc
 in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf,

[ MDVSA-2010:055 ] poppler

 some of these details are obtained from third party information
 (CVE-2009-3607).
 
 Integer overflow in the ObjectStream::ObjectStream function in XRef.cc
 in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in
 GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote
 attackers to execute arbitrary code via a crafted PDF document that
 triggers a heap-based buffer overflow (CVE-2009-3608).
 
 Integer overflow in the ImageStream::ImageStream function in Stream.cc
 in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf,

[ MDVSA-2009:027 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2009:027
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : January 24, 2009
 Affected: 2009.0
 _______________________________________________________________________

 Problem Description:

Cisco Security Advisory: Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability

Hash: SHA256

Cisco Security Advisory: Jabber Extensible Communications Platform
and Cisco Unified Presence XML Denial of Service Vulnerability

Advisory ID: cisco-sa-20110928-xcpcupsxml

Revision 1.0

For Public Release 2011 September 28 1600 UTC (GMT)

[ MDVSA-2008:036 ] - Updated CUPS packages fix SNMP vulnerability

 
 Mandriva Linux Security Advisory                         MDVSA-2008:036
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : cups
 Date    : February 6, 2008
 Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:

[SECURITY] [DSA 2176-1] cups security update

Debian Security Advisory DSA-2176-1                   security@debian.org
http://www.debian.org/security/                        Moritz Muehlenhoff
March 02, 2011                         http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : cups
Vulnerability  : several
Problem type   : remote
Debian-specific: no
CVE ID         : CVE-2008-5183 CVE-2009-3553 CVE-2010-0540 CVE-2010-0542 CVE-2010-1748 CVE-2010-2431 CVE-2010-2432 CVE-2010-2941

[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution

Debian Security Advisory DSA-1625-1                  security@debian.org
http://www.debian.org/security/                          Thijs Kinkhorst
August 01, 2008                       http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : cupsys
Vulnerability  : buffer overflows
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2008-0053 CVE-2008-1373 CVE-2008-1722
Debian Bug     : 476305

[ MDVSA-2009:280 ] cups

 Mandriva Linux Security Advisory                         MDVSA-2009:280
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : cups
 Date    : October 19, 2009
 Affected: 2009.1
 _______________________________________________________________________

 Problem Description:

ZDI-08-067: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability

ZDI-08-067: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution 
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-067
October 9, 2008

-- CVE ID:
CVE-2008-3641

-- Affected Vendors:
Apple
<<Previous Next>>

Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!