CentOS Update For Cups CESA-2008:0498 Centos3 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. An integer overflow flaw leading to a heap buffer overflow was discovered in the Portable Network Graphics (PNG) decoding routines used by the CUPS image converting filters &quot imagetops&quot and &quot imagetoraster&quot . An attacker could create a malicious PNG file that could possibly execute arbitrary code as the &quot lp&quot user if the file was printed. (CVE-2008-1722) All CUPS users are advised to upgrade to these updated packages, which contain backported patch to resolve this issue.

Affected

cups on CentOS 3

References

http://lists.centos.org/pipermail/centos-announce/2008-June/014960.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1722

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Update for acpid CESA-2009:0474 centos5 i386
CentOS Update for 389-ds-base CESA-2014:0292 centos6
CentOS Security Advisory CESA-2009:0004 (openssl)
CentOS Security Advisory CESA-2009:0340 (libpng)
CentOS Update for apr-util CESA-2010:0950 centos4 i386

CentOS Update for cups CESA-2008:0498 centos3 i386

Take action and discover your vulnerabilities