Fedora Core 10 FEDORA-2009-11062 (cups) Network Vulnerability

Summary

The remote host is missing an update to cups announced via advisory FEDORA-2009-11062.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update cups' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11062

Insight

Update Information: This fixes CVE-2009-2820, an XSS vulnerability in the web interface. This also updates cups to the latest stable release on the 1.3 branch, and fixes a problem with number-up handling. ChangeLog: * Tue Nov 10 2009 Tim Waugh 1:1.3.11-2 - Added fix for CVE-2009-2820 (bug #529833). * Tue Nov 3 2009 Tim Waugh 1:1.3.11-1 - 1.3.11. * Tue Nov 3 2009 Tim Waugh 1:1.3.10-7 - Removed stale patch from STR #2831 which was causing problems with number-up (bug #532516).

References

https://bugzilla.redhat.com/show_bug.cgi?id=529833

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1722, CVE-2008-5183, CVE-2008-5286, CVE-2009-2820

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Take action and discover your vulnerabilities