CentOS Update For Cups CESA-2008:1028 Centos3 X86_64 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The Common UNIX® Printing System (CUPS) provides a portable printing layer for UNIX operating systems. An integer overflow flaw, leading to a heap buffer overflow, was discovered in the Portable Network Graphics (PNG) decoding routines used by the CUPS image-converting filters, &quot imagetops&quot and &quot imagetoraster&quot . An attacker could create a malicious PNG file that could, potentially, execute arbitrary code as the &quot lp&quot user if the file was printed. (CVE-2008-5286) CUPS users should upgrade to these updated packages, which contain a backported patch to correct this issue.

Affected

cups on CentOS 3

References

http://lists.centos.org/pipermail/centos-announce/2008-December/015485.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5286

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:1438 (kernel)
CentOS Security Advisory CESA-2009:1289 (mysql)
CentOS Security Advisory CESA-2009:0480 (poppler)
CentOS Security Advisory CESA-2009:0014 (kernel)
CentOS Security Advisory CESA-2009:1219 (libvorbis)

CentOS Update for cups CESA-2008:1028 centos3 x86_64

Take action and discover your vulnerabilities