7.9 - RHSA-2010:0811

Executive Summary

Summary
Title	cups security update

Informations
Name	RHSA-2010:0811	First vendor Publication	2010-10-28
Vendor	RedHat	Last vendor Modification	2010-10-28
Severity (Vendor)	Important	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	7.9	Attack Range	Adjacent network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	5.5	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated cups packages that fix two security issues are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

3. Description:

The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems.

A use-after-free flaw was found in the way the CUPS server parsed Internet Printing Protocol (IPP) packets. A malicious user able to send IPP requests to the CUPS server could use this flaw to crash the CUPS server or, potentially, execute arbitrary code with the privileges of the CUPS server. (CVE-2010-2941)

A possible privilege escalation flaw was found in CUPS. An unprivileged process running as the "lp" user (such as a compromised external filter program spawned by the CUPS server) could trick the CUPS server into overwriting arbitrary files as the root user. (CVE-2010-2431)

Red Hat would like to thank Emmanuel Bouillon of NATO C3 Agency for reporting the CVE-2010-2941 issue.

Users of cups are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing this update, the cupsd daemon will be restarted automatically.

4. Solution:

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

605397 - CVE-2010-2431 cups: latent privilege escalation vulnerability 624438 - CVE-2010-2941 cups: cupsd memory corruption vulnerability

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2010-0811.html

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-416	Use After Free
50 %	CWE-59	Improper Link Resolution Before File Access ('Link Following')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12954

Oval ID:	oval:org.mitre.oval:def:12954
Title:	DSA-2176-1 cups -- several
Description:	Several vulnerabilities have been discovered in the Common UNIX Printing System: CVE-2008-5183 A null pointer dereference in RSS job completion notifications could lead to denial of service. CVE-2009-3553 It was discovered that incorrect file descriptor handling could lead to denial of service. CVE-2010-0540 A cross-site request forgery vulnerability was discovered in the web interface. CVE-2010-0542 Incorrect memory management in the filter subsystem could lead to denial of service. CVE-2010-1748 Information disclosure in the web interface. CVE-2010-2431 Emmanuel Bouillon discovered a symlink vulnerability in handling of cache files. CVE-2010-2432 Denial of service in the authentication code. CVE-2010-2941 Incorrect memory management in the IPP code could lead to denial of service or the execution of arbitrary code.
Family:	unix	Class:	patch
Reference(s):	DSA-2176-1 CVE-2008-5183 CVE-2009-3553 CVE-2010-0540 CVE-2010-0542 CVE-2010-1748 CVE-2010-2431 CVE-2010-2432 CVE-2010-2941	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	cups
Definition Synopsis:
Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND cups DPKG is earlier than 1.3.8-1+lenny9

Definition Id: oval:org.mitre.oval:def:13015

Oval ID:	oval:org.mitre.oval:def:13015
Title:	USN-1012-1 -- cups, cupsys vulnerability
Description:	Emmanuel Bouillon discovered that CUPS did not properly handle certain Internet Printing Protocol packets. A remote attacker could use this flaw to cause a denial of service or possibly execute arbitrary code. In the default installation in Ubuntu 8.04 LTS and later, attackers would be isolated by the CUPS AppArmor profile.
Family:	unix	Class:	patch
Reference(s):	USN-1012-1 CVE-2010-2941	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 10.10 Ubuntu 10.04 Ubuntu 9.10 Ubuntu 6.06	Product(s):	cups cupsys
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Architecture section Architecture independet section Installed architecture is all AND cupsys-common DPKG is earlier than 1.3.7-1ubuntu3.12 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section cupsys-bsd DPKG is earlier than 1.3.7-1ubuntu3.12 AND cupsys-client DPKG is earlier than 1.3.7-1ubuntu3.12 AND libcupsimage2 DPKG is earlier than 1.3.7-1ubuntu3.12 AND libcupsimage2-dev DPKG is earlier than 1.3.7-1ubuntu3.12 AND libcupsys2-dev DPKG is earlier than 1.3.7-1ubuntu3.12 AND cupsys DPKG is earlier than 1.3.7-1ubuntu3.12 AND libcupsys2 DPKG is earlier than 1.3.7-1ubuntu3.12 OR Release section Ubuntu 10.10 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section cups-common DPKG is earlier than 1.4.4-6ubuntu2.2 AND cupsddk DPKG is earlier than 1.4.4-6ubuntu2.2 OR Architecture depended section Supported architectures section Installed architecture is powerpc AND Installed architecture is armel AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section libcupscgi1 DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcups2-dev DPKG is earlier than 1.4.4-6ubuntu2.2 AND cups-bsd DPKG is earlier than 1.4.4-6ubuntu2.2 AND cups DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsdriver1-dev DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsimage2-dev DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsimage2 DPKG is earlier than 1.4.4-6ubuntu2.2 AND cups-client DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsdriver1 DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcups2 DPKG is earlier than 1.4.4-6ubuntu2.2 AND cups-dbg DPKG is earlier than 1.4.4-6ubuntu2.2 AND cups-ppdc DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsppdc1 DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsmime1 DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsppdc1-dev DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupscgi1-dev DPKG is earlier than 1.4.4-6ubuntu2.2 AND libcupsmime1-dev DPKG is earlier than 1.4.4-6ubuntu2.2 OR Release section Ubuntu 10.04 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section cupsddk DPKG is earlier than 1.4.3-1ubuntu1.3 AND cupsys-client DPKG is earlier than 1.4.3-1ubuntu1.3 AND cupsys-bsd DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups-common DPKG is earlier than 1.4.3-1ubuntu1.3 AND cupsys DPKG is earlier than 1.4.3-1ubuntu1.3 AND cupsys-dbg DPKG is earlier than 1.4.3-1ubuntu1.3 AND cupsys-common DPKG is earlier than 1.4.3-1ubuntu1.3 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is armel AND Packages section libcupscgi1 DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcups2-dev DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups-bsd DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsmime1 DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsdriver1-dev DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsimage2-dev DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsimage2 DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups-client DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsdriver1 DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcups2 DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups-dbg DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups-ppdc DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsppdc1 DPKG is earlier than 1.4.3-1ubuntu1.3 AND cups DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsppdc1-dev DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupscgi1-dev DPKG is earlier than 1.4.3-1ubuntu1.3 AND libcupsmime1-dev DPKG is earlier than 1.4.3-1ubuntu1.3 OR Release section Ubuntu 9.10 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section cupsddk DPKG is earlier than 1.4.1-5ubuntu2.7 AND cupsys-client DPKG is earlier than 1.4.1-5ubuntu2.7 AND cupsys-bsd DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups-common DPKG is earlier than 1.4.1-5ubuntu2.7 AND cupsys DPKG is earlier than 1.4.1-5ubuntu2.7 AND cupsys-dbg DPKG is earlier than 1.4.1-5ubuntu2.7 AND cupsys-common DPKG is earlier than 1.4.1-5ubuntu2.7 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is lpia AND Packages section libcupscgi1 DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcups2-dev DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups-bsd DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsdriver1-dev DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsimage2-dev DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsimage2 DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups-client DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsdriver1 DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcups2 DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups-dbg DPKG is earlier than 1.4.1-5ubuntu2.7 AND cups-ppdc DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsppdc1 DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsmime1 DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsppdc1-dev DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupscgi1-dev DPKG is earlier than 1.4.1-5ubuntu2.7 AND libcupsmime1-dev DPKG is earlier than 1.4.1-5ubuntu2.7 OR Release section Ubuntu 6.06 is installed AND Architecture section Architecture independet section Installed architecture is all AND libcupsys2-gnutls10 DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 OR Architecture depended section Supported architectures section Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section cupsys-bsd DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND cupsys-client DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND libcupsys2-dev DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND libcupsimage2-dev DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND libcupsimage2 DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND cupsys DPKG is earlier than 1.2.2-0ubuntu0.6.06.20 AND libcupsys2 DPKG is earlier than 1.2.2-0ubuntu0.6.06.20

Definition Id: oval:org.mitre.oval:def:22210

Oval ID:	oval:org.mitre.oval:def:22210
Title:	RHSA-2010:0866: cups security update (Important)
Description:	ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Family:	unix	Class:	patch
Reference(s):	RHSA-2010:0866-02 CVE-2010-2941	Version:	4
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	cups
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section cups-php is earlier than 1:1.4.2-35.el6_0.1 AND cups-lpd is earlier than 1:1.4.2-35.el6_0.1 AND cups-devel is earlier than 1:1.4.2-35.el6_0.1 AND cups is earlier than 1:1.4.2-35.el6_0.1 AND cups-libs is earlier than 1:1.4.2-35.el6_0.1

Definition Id: oval:org.mitre.oval:def:22217

Oval ID:	oval:org.mitre.oval:def:22217
Title:	RHSA-2010:0811: cups security update (Important)
Description:	ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Family:	unix	Class:	patch
Reference(s):	RHSA-2010:0811-01 CESA-2010:0811 CVE-2010-2431 CVE-2010-2941	Version:	29
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	cups
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section cups-lpd is earlier than 1:1.3.7-18.el5_5.8 AND cups-devel is earlier than 1:1.3.7-18.el5_5.8 AND cups-libs is earlier than 1:1.3.7-18.el5_5.8 AND cups is earlier than 1:1.3.7-18.el5_5.8

Definition Id: oval:org.mitre.oval:def:22255

Oval ID:	oval:org.mitre.oval:def:22255
Title:	ELSA-2010:0811: cups security update (Important)
Description:	ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Family:	unix	Class:	patch
Reference(s):	ELSA-2010:0811-01 CVE-2010-2431 CVE-2010-2941	Version:	13
Platform(s):	Oracle Linux 5	Product(s):	cups
Definition Synopsis:
Oracle Linux 5.x rpm test cups-lpd is earlier than 1:1.3.7-18.el5_5.8 AND cups-devel is earlier than 1:1.3.7-18.el5_5.8 AND cups-libs is earlier than 1:1.3.7-18.el5_5.8 AND cups is earlier than 1:1.3.7-18.el5_5.8

Definition Id: oval:org.mitre.oval:def:23225

Oval ID:	oval:org.mitre.oval:def:23225
Title:	ELSA-2010:0866: cups security update (Important)
Description:	ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Family:	unix	Class:	patch
Reference(s):	ELSA-2010:0866-02 CVE-2010-2941	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	cups
Definition Synopsis:
Oracle Linux 6.x rpm test cups-php is earlier than 1:1.4.2-35.el6_0.1 AND cups-lpd is earlier than 1:1.4.2-35.el6_0.1 AND cups-devel is earlier than 1:1.4.2-35.el6_0.1 AND cups is earlier than 1:1.4.2-35.el6_0.1 AND cups-libs is earlier than 1:1.4.2-35.el6_0.1

Definition Id: oval:org.mitre.oval:def:27944

Oval ID:	oval:org.mitre.oval:def:27944
Title:	DEPRECATED: ELSA-2010-0866 -- cups security update (important)
Description:	[1:1.4.2-35:.1] - Applied patch to fix cupsd memory corruption vulnerability (CVE-2010-2941, STR #3648, bug #624438).
Family:	unix	Class:	patch
Reference(s):	ELSA-2010-0866 CVE-2010-2941	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	cups
Definition Synopsis:
Oracle Linux 6.x Packages match section cups is earlier than 0:1.4.2-35.el6_0.1 AND cups-devel is earlier than 0:1.4.2-35.el6_0.1 AND cups-libs is earlier than 0:1.4.2-35.el6_0.1 AND cups-lpd is earlier than 0:1.4.2-35.el6_0.1 AND cups-php is earlier than 0:1.4.2-35.el6_0.1

Definition Id: oval:org.mitre.oval:def:28063

Oval ID:	oval:org.mitre.oval:def:28063
Title:	DEPRECATED: ELSA-2010-0811 -- cups security update (important)
Description:	[1.3.7-18:.8] - Applied patch to fix cupsd memory corruption vulnerability (CVE-2010-2941, STR #3648, bug #624438). - Fix latent privilege escalation vulnerability (CVE-2010-2431, STR #3510, bug #605397).
Family:	unix	Class:	patch
Reference(s):	ELSA-2010-0811 CVE-2010-2431 CVE-2010-2941	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	cups
Definition Synopsis:
Oracle Linux 5.x Packages match section cups is earlier than 0:1.3.7-18.el5_5.8 AND cups-devel is earlier than 0:1.3.7-18.el5_5.8 AND cups-libs is earlier than 0:1.3.7-18.el5_5.8 AND cups-lpd is earlier than 0:1.3.7-18.el5_5.8

CPE : Common Platform Enumeration

Type	Description	Count
Application	Apple Cups cpe:2.3:a:apple:cups:1.4.4:::::::* cpe:2.3:a:apple:cups:1.4.3:::::::* cpe:2.3:a:apple:cups:1.4.2:::::::* cpe:2.3:a:apple:cups:1.4.1:::::::* cpe:2.3:a:apple:cups:1.4.0:::::::* cpe:2.3:a:apple:cups:1.4:b1:::::: cpe:2.3:a:apple:cups:1.4:b2:::::: cpe:2.3:a:apple:cups:1.4:rc1:::::: cpe:2.3:a:apple:cups:1.4:b3:::::: cpe:2.3:a:apple:cups:1.3.9:::::::* cpe:2.3:a:apple:cups:1.3.8:::::::* cpe:2.3:a:apple:cups:1.3.7:::::::* cpe:2.3:a:apple:cups:1.3.6:::::::* cpe:2.3:a:apple:cups:1.3.5:::::::* cpe:2.3:a:apple:cups:1.3.4:::::::* cpe:2.3:a:apple:cups:1.3.3:::::::* cpe:2.3:a:apple:cups:1.3.2:::::::* cpe:2.3:a:apple:cups:1.3.11:::::::* cpe:2.3:a:apple:cups:1.3.10:::::::* cpe:2.3:a:apple:cups:1.3.1:::::::* cpe:2.3:a:apple:cups:1.3.0:::::::* cpe:2.3:a:apple:cups:1.3:rc1:::::: cpe:2.3:a:apple:cups:1.3:b1:::::: cpe:2.3:a:apple:cups:1.3:rc2:::::: cpe:2.3:a:apple:cups:1.2.9:::::::* cpe:2.3:a:apple:cups:1.2.8:::::::* cpe:2.3:a:apple:cups:1.2.7:::::::* cpe:2.3:a:apple:cups:1.2.6:::::::* cpe:2.3:a:apple:cups:1.2.5:::::::* cpe:2.3:a:apple:cups:1.2.4:::::::* cpe:2.3:a:apple:cups:1.2.3:::::::* cpe:2.3:a:apple:cups:1.2.2:::::::* cpe:2.3:a:apple:cups:1.2.12:::::::* cpe:2.3:a:apple:cups:1.2.11:::::::* cpe:2.3:a:apple:cups:1.2.10:::::::* cpe:2.3:a:apple:cups:1.2.1:::::::* cpe:2.3:a:apple:cups:1.2.0:::::::* cpe:2.3:a:apple:cups:1.2:b1:::::: cpe:2.3:a:apple:cups:1.2:b2:::::: cpe:2.3:a:apple:cups:1.2:rc3:::::: cpe:2.3:a:apple:cups:1.2:rc2:::::: cpe:2.3:a:apple:cups:1.2:rc1:::::: cpe:2.3:a:apple:cups:1.1.9-1:::::::* cpe:2.3:a:apple:cups:1.1.9:::::::* cpe:2.3:a:apple:cups:1.1.8:::::::* cpe:2.3:a:apple:cups:1.1.7:::::::* cpe:2.3:a:apple:cups:1.1.6-3:::::::* cpe:2.3:a:apple:cups:1.1.6-2:::::::* cpe:2.3:a:apple:cups:1.1.6-1:::::::* cpe:2.3:a:apple:cups:1.1.6:::::::* cpe:2.3:a:apple:cups:1.1.5-2:::::::* cpe:2.3:a:apple:cups:1.1.5-1:::::::* cpe:2.3:a:apple:cups:1.1.5:::::::* cpe:2.3:a:apple:cups:1.1.4:::::::* cpe:2.3:a:apple:cups:1.1.3:::::::* cpe:2.3:a:apple:cups:1.1.23:rc1:::::: cpe:2.3:a:apple:cups:1.1.23:::::::* cpe:2.3:a:apple:cups:1.1.22:::::::* cpe:2.3:a:apple:cups:1.1.22:rc1:::::: cpe:2.3:a:apple:cups:1.1.22:rc2:::::: cpe:2.3:a:apple:cups:1.1.21:rc2:::::: cpe:2.3:a:apple:cups:1.1.21:rc1:::::: cpe:2.3:a:apple:cups:1.1.21:::::::* cpe:2.3:a:apple:cups:1.1.21:-:::::: cpe:2.3:a:apple:cups:1.1.20:rc3:::::: cpe:2.3:a:apple:cups:1.1.20:::::::* cpe:2.3:a:apple:cups:1.1.20:rc5:::::: cpe:2.3:a:apple:cups:1.1.20:rc4:::::: cpe:2.3:a:apple:cups:1.1.20:rc2:::::: cpe:2.3:a:apple:cups:1.1.20:rc1:::::: cpe:2.3:a:apple:cups:1.1.20:rc6:::::: cpe:2.3:a:apple:cups:1.1.2:::::::* cpe:2.3:a:apple:cups:1.1.19:rc1:::::: cpe:2.3:a:apple:cups:1.1.19:rc3:::::: cpe:2.3:a:apple:cups:1.1.19:rc2:::::: cpe:2.3:a:apple:cups:1.1.19:rc5:::::: cpe:2.3:a:apple:cups:1.1.19:rc4:::::: cpe:2.3:a:apple:cups:1.1.19:::::::* cpe:2.3:a:apple:cups:1.1.18:::::::* cpe:2.3:a:apple:cups:1.1.17:::::::* cpe:2.3:a:apple:cups:1.1.16:::::::* cpe:2.3:a:apple:cups:1.1.15:::::::* cpe:2.3:a:apple:cups:1.1.14:::::::* cpe:2.3:a:apple:cups:1.1.13:::::::* cpe:2.3:a:apple:cups:1.1.12:::::::* cpe:2.3:a:apple:cups:1.1.11:::::::* cpe:2.3:a:apple:cups:1.1.10-1:::::::* cpe:2.3:a:apple:cups:1.1.10:::::::* cpe:2.3:a:apple:cups:1.1.1:::::::* cpe:2.3:a:apple:cups:1.1:::::::* cpe:2.3:a:apple:cups:::::::: cpe:2.3:a:apple:cups:-:::::::*	92
Application	Apple Mac Os X cpe:2.3:a:apple:mac_os_x:10.5.6:::::::* cpe:2.3:a:apple:mac_os_x::::::::	2
Os	Apple Mac Os X cpe:2.3:o:apple:mac_os_x:10.6.4:::::::* cpe:2.3:o:apple:mac_os_x:10.6.3:::::::* cpe:2.3:o:apple:mac_os_x:10.6.2:::::::* cpe:2.3:o:apple:mac_os_x:10.6.1:::::::* cpe:2.3:o:apple:mac_os_x:10.6.1::server::::: cpe:2.3:o:apple:mac_os_x:10.6.0:::::::* cpe:2.3:o:apple:mac_os_x:10.6:::::::* cpe:2.3:o:apple:mac_os_x:10.6:server:::::: cpe:2.3:o:apple:mac_os_x:10.5.8:::::::* cpe:2.3:o:apple:mac_os_x:10.5.8::server::::: cpe:2.3:o:apple:mac_os_x:10.5.7:::::::* cpe:2.3:o:apple:mac_os_x:10.5.6:::::::* cpe:2.3:o:apple:mac_os_x:10.5.5:::::::* cpe:2.3:o:apple:mac_os_x:10.5.4:::::::* cpe:2.3:o:apple:mac_os_x:10.5.3:::::::* cpe:2.3:o:apple:mac_os_x:10.5.2:::::::* cpe:2.3:o:apple:mac_os_x:10.5.2:2008-002:::::: cpe:2.3:o:apple:mac_os_x:10.5.1:::::::* cpe:2.3:o:apple:mac_os_x:10.5.0:::::::* cpe:2.3:o:apple:mac_os_x:10.5:::::::* cpe:2.3:o:apple:mac_os_x:10.4.9:::::::* cpe:2.3:o:apple:mac_os_x:10.4.8:::::::* cpe:2.3:o:apple:mac_os_x:10.4.8::macbook::::: cpe:2.3:o:apple:mac_os_x:10.4.8::mac_mini::::: cpe:2.3:o:apple:mac_os_x:10.4.8::macbook_pro::::: cpe:2.3:o:apple:mac_os_x:10.4.7:::::::* cpe:2.3:o:apple:mac_os_x:10.4.6:::::::* cpe:2.3:o:apple:mac_os_x:10.4.5:::::::* cpe:2.3:o:apple:mac_os_x:10.4.4:::::::* cpe:2.3:o:apple:mac_os_x:10.4.3:::::::* cpe:2.3:o:apple:mac_os_x:10.4.2:::::::* cpe:2.3:o:apple:mac_os_x:10.4.11:::::::* cpe:2.3:o:apple:mac_os_x:10.4.10:::::::* cpe:2.3:o:apple:mac_os_x:10.4.1:::::::* cpe:2.3:o:apple:mac_os_x:10.4.0:::::::* cpe:2.3:o:apple:mac_os_x:10.4.:::::::* cpe:2.3:o:apple:mac_os_x:10.4:::::::* cpe:2.3:o:apple:mac_os_x:10.3.9:::::::* cpe:2.3:o:apple:mac_os_x:10.3.8:::::::* cpe:2.3:o:apple:mac_os_x:10.3.7:::::::* cpe:2.3:o:apple:mac_os_x:10.3.6:::::::* cpe:2.3:o:apple:mac_os_x:10.3.5:::::::* cpe:2.3:o:apple:mac_os_x:10.3.4:::::::* cpe:2.3:o:apple:mac_os_x:10.3.3:::::::* cpe:2.3:o:apple:mac_os_x:10.3.2:::::::* cpe:2.3:o:apple:mac_os_x:10.3.1:::::::* cpe:2.3:o:apple:mac_os_x:10.3.0:::::::* cpe:2.3:o:apple:mac_os_x:10.3:::::::* cpe:2.3:o:apple:mac_os_x:10.2.8:::::::* cpe:2.3:o:apple:mac_os_x:10.2.7:::::::* cpe:2.3:o:apple:mac_os_x:10.2.6:::::::* cpe:2.3:o:apple:mac_os_x:10.2.5:::::::* cpe:2.3:o:apple:mac_os_x:10.2.4:::::::* cpe:2.3:o:apple:mac_os_x:10.2.3:::::::* cpe:2.3:o:apple:mac_os_x:10.2.2:::::::* cpe:2.3:o:apple:mac_os_x:10.2.1:::::::* cpe:2.3:o:apple:mac_os_x:10.2.0:::::::* cpe:2.3:o:apple:mac_os_x:10.2:::::::* cpe:2.3:o:apple:mac_os_x:10.1.5:::::::* cpe:2.3:o:apple:mac_os_x:10.1.4:::::::* cpe:2.3:o:apple:mac_os_x:10.1.3:::::::* cpe:2.3:o:apple:mac_os_x:10.1.2:::::::* cpe:2.3:o:apple:mac_os_x:10.1.1:::::::* cpe:2.3:o:apple:mac_os_x:10.1.0:::::::* cpe:2.3:o:apple:mac_os_x:10.1:::::::* cpe:2.3:o:apple:mac_os_x:10.0.4:::::::* cpe:2.3:o:apple:mac_os_x:10.0.3:::::::* cpe:2.3:o:apple:mac_os_x:10.0.2:::::::* cpe:2.3:o:apple:mac_os_x:10.0.1:::::::* cpe:2.3:o:apple:mac_os_x:10.0.0:::::::* cpe:2.3:o:apple:mac_os_x:10.0:::::::* cpe:2.3:o:apple:mac_os_x:::::::: cpe:2.3:o:apple:mac_os_x:-:::::::*	73
Os	Apple Mac Os X Server cpe:2.3:o:apple:mac_os_x_server:10.6.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.6.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.6.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.6:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.8:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.7:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.6:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.9:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.8:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.7:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.6:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.11:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.10:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.9:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.8:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.7:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.6:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.8:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.7:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.6:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.5:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0.4:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0.3:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0.2:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0.1:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0.0:::::::* cpe:2.3:o:apple:mac_os_x_server:10.0:::::::* cpe:2.3:o:apple:mac_os_x_server:5.0.3:::::::* cpe:2.3:o:apple:mac_os_x_server:5.0.2:::::::* cpe:2.3:o:apple:mac_os_x_server:5.0.15:::::::* cpe:2.3:o:apple:mac_os_x_server:5.0.14:::::::* cpe:2.3:o:apple:mac_os_x_server::::::::	68
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:10.04::::-::: cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*	5
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:5.0:::::::*	1
Os	Fedoraproject Fedora cpe:2.3:o:fedoraproject:fedora:14:::::::* cpe:2.3:o:fedoraproject:fedora:13:::::::* cpe:2.3:o:fedoraproject:fedora:12:::::::*	3
Os	Opensuse cpe:2.3:o:opensuse:opensuse:11.3:::::::* cpe:2.3:o:opensuse:opensuse:11.2:::::::* cpe:2.3:o:opensuse:opensuse:11.1:::::::*	3
Os	Redhat Enterprise Linux cpe:2.3:o:redhat:enterprise_linux:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux:5.0:::::::*	2
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*	1
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*	1
Os	Suse Linux Enterprise cpe:2.3:o:suse:linux_enterprise:11.0:sp1:::::: cpe:2.3:o:suse:linux_enterprise:11.0:-:::::: cpe:2.3:o:suse:linux_enterprise:10.0:sp3::::::	3
Os	Suse Linux Enterprise Server cpe:2.3:o:suse:linux_enterprise_server:9:::::::*	1

OpenVAS Exploits

Date	Description
2012-08-10	Name : Gentoo Security Advisory GLSA 201207-10 (cups) File : nvt/glsa_201207_10.nasl
2011-09-12	Name : Fedora Update for cups FEDORA-2011-11221 File : nvt/gb_fedora_2011_11221_cups_fc14.nasl
2011-09-07	Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007) File : nvt/gb_macosx_su10-007.nasl
2011-03-09	Name : Debian Security Advisory DSA 2176-1 (cups) File : nvt/deb_2176_1.nasl
2010-12-02	Name : Fedora Update for cups FEDORA-2010-17641 File : nvt/gb_fedora_2010_17641_cups_fc14.nasl
2010-11-23	Name : Fedora Update for cups FEDORA-2010-17615 File : nvt/gb_fedora_2010_17615_cups_fc13.nasl
2010-11-23	Name : Fedora Update for cups FEDORA-2010-17627 File : nvt/gb_fedora_2010_17627_cups_fc12.nasl
2010-11-23	Name : Mandriva Update for cups MDVSA-2010:232 (cups) File : nvt/gb_mandriva_MDVSA_2010_232.nasl
2010-11-23	Name : Mandriva Update for cups MDVSA-2010:233 (cups) File : nvt/gb_mandriva_MDVSA_2010_233.nasl
2010-11-18	Name : CUPS IPP Use-After-Free Denial of Service Vulnerability File : nvt/gb_cupsd_ipp_use_after_free_dos_vuln.nasl
2010-11-16	Name : Ubuntu Update for cups, cupsys vulnerability USN-1012-1 File : nvt/gb_ubuntu_USN_1012_1.nasl
2010-11-04	Name : RedHat Update for cups RHSA-2010:0811-01 File : nvt/gb_RHSA-2010_0811-01_cups.nasl
2010-06-21	Name : CUPS 'texttops' Filter NULL-pointer Dereference Vulnerability File : nvt/gb_cups_40943.nasl
0000-00-00	Name : Slackware Advisory SSA:2010-333-01 cups File : nvt/esoft_slk_ssa_2010_333_01.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
68951	CUPS IPP Request Handling Use-After-Free Arbitrary Code Execution CUPS contains a flaw related to the 'ipp.c' function's failure to allocate memory correctly for attribute values with invalid string data types, creating a use-after-free error. This may allow a remote attacker to use a crafted IPP request to execute arbitrary code.
65698	CUPS cupsFileOpen Function Multiple Temporary File Symlink Arbitrary File Ove...

Snort® IPS/IDS

Date	Description
2014-01-10	CUPS IPP multi-valued attribute memory corruption attempt RuleID : 26972 - Revision : 4 - Type : SERVER-OTHER
2014-01-10	Apple CUPS IPP memory corruption attempt RuleID : 23139 - Revision : 5 - Type : SERVER-OTHER
2014-01-10	Apple CUPS IPP memory corruption attempt RuleID : 23138 - Revision : 5 - Type : SERVER-OTHER

Nessus® Vulnerability Scanner

Date	Description
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_cups-101124.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0811.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0866.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101110_cups_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101028_cups_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-07-10	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201207-10.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-7775.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cups-110921.nasl - Type : ACT_GATHER_INFO
2011-10-24	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-7774.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_cups-101124.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_1_cups-101124.nasl - Type : ACT_GATHER_INFO
2011-03-02	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2176.nasl - Type : ACT_GATHER_INFO
2010-12-06	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cups-101119.nasl - Type : ACT_GATHER_INFO
2010-11-30	Name : The remote print service is affected by multiple vulnerabilities. File : cups_1_4_5.nasl - Type : ACT_GATHER_INFO
2010-11-30	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2010-333-01.nasl - Type : ACT_GATHER_INFO
2010-11-24	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0811.nasl - Type : ACT_GATHER_INFO
2010-11-23	Name : The remote Fedora host is missing a security update. File : fedora_2010-17627.nasl - Type : ACT_GATHER_INFO
2010-11-23	Name : The remote Fedora host is missing a security update. File : fedora_2010-17615.nasl - Type : ACT_GATHER_INFO
2010-11-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0866.nasl - Type : ACT_GATHER_INFO
2010-11-17	Name : The remote Fedora host is missing a security update. File : fedora_2010-17641.nasl - Type : ACT_GATHER_INFO
2010-11-16	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-233.nasl - Type : ACT_GATHER_INFO
2010-11-16	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-232.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes security issues. File : macosx_SecUpd2010-007.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_5.nasl - Type : ACT_GATHER_INFO
2010-11-05	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1012-1.nasl - Type : ACT_GATHER_INFO
2010-10-29	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0811.nasl - Type : ACT_GATHER_INFO
2010-07-08	Name : The remote printer service is affected by multiple vulnerabilities. File : cups_1_4_4.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:53:59	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	8
CPE ID(s)	256
osvdb(s)	2
Openvas Exploit(s)	14
Snort® Rule(s)	3
Nessus® Exploit(s)	27

	Related
9.8	CVE-2010-2941
2.6	CVE-2010-2431
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)

7.9 - RHSA-2010:0811

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU