Gentoo Security Advisory GLSA 200804-01 (cups) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200804-01.

Solution

All CUPS users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-print/cups-1.2.12-r7' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200804-01 http://bugs.gentoo.org/show_bug.cgi?id=211449 http://bugs.gentoo.org/show_bug.cgi?id=212364 http://bugs.gentoo.org/show_bug.cgi?id=214068

Insight

Multiple vulnerabilities have been discovered in CUPS, allowing for the remote execution of arbitrary code and a Denial of Service.

Severity

Classification

CVE CVE-2008-0047, CVE-2008-0053, CVE-2008-0882, CVE-2008-1373

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200408-08 (Cfengine)
Gentoo Security Advisory GLSA 200406-05 (Apache)
Gentoo Security Advisory GLSA 200408-14 (acroread)
Gentoo Security Advisory GLSA 200404-02 (kde-base/kde)
Gentoo Security Advisory GLSA 200406-14 (aspell)

Take action and discover your vulnerabilities