CentOS Update For Cups CESA-2010:0129 Centos5 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. It was discovered that the Red Hat Security Advisory RHSA-2009:1595 did not fully correct the use-after-free flaw in the way CUPS handled references in its file descriptors-handling interface. A remote attacker could send specially-crafted queries to the CUPS server, causing it to crash. (CVE-2010-0302) Users of cups are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the cupsd daemon will be restarted automatically.

Affected

cups on CentOS 5

References

http://lists.centos.org/pipermail/centos-announce/2010-March/016547.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3553, CVE-2010-0302

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:0010 (squirrelmail)
CentOS Security Advisory CESA-2009:1039 (ntp)
CentOS Update for apr CESA-2011:0844 centos4 i386
CentOS Security Advisory CESA-2009:1463 (newt)
CentOS Security Advisory CESA-2009:1615 (xerces-j2)

CentOS Update for cups CESA-2010:0129 centos5 i386

Take action and discover your vulnerabilities