Please Install the Updated Packages.

The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. The CUPS &quot pdftops&quot filter converts Portable Document Format (PDF) files to PostScript. Two integer overflow flaws were found in the CUPS &quot pdftops&quot filter. An attacker could create a malicious PDF file that would cause &quot pdftops&quot to crash or, potentially, execute arbitrary code as the &quot lp&quot user if the file was printed. (CVE-2009-3608, CVE-2009-3609) Red Hat would like to thank Chris Rohlf for reporting the CVE-2009-3608 issue. Users of cups are advised to upgrade to these updated packages, which contain a backported patch to correct these issues. After installing the update, the cupsd daemon will be restarted automatically.

cups on CentOS 5

• http://lists.centos.org/pipermail/centos-announce/2009-October/016218.html

---

Updated on 2015-03-25