[BLFS Trac] #3205: cups-1.4.5, with security fix

BLFS Trac Thu, 18 Nov 2010 06:10:20 -0800

#3205: cups-1.4.5, with security fix
--------------------------------------+-------------------------------------
 Reporter:  k...@…                     |       Owner:  blfs-b...@…              
     
     Type:  task                      |      Status:  new                       
    
 Priority:  normal                    |   Milestone:  6.7                       
    
Component:  BOOK                      |     Version:  SVN                       
    
 Severity:  normal                    |    Keywords:                            
    
--------------------------------------+-------------------------------------
 Version upgrade, includes fix for CVE-2010-2941.  From the mitre report:


 ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory
 for attribute values with invalid string data types, which allows remote
 attackers to cause a denial of service (use-after-free and application
 crash) or possibly execute arbitrary code via a crafted IPP request.

 Loads of other fixes, see http://www.cups.org/articles.php?L597

-- 
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/3205>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
-- 
http://linuxfromscratch.org/mailman/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[BLFS Trac] #3205: cups-1.4.5, with security fix

Reply via email to