GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Sat Jul 16, 2016 3:26 pm Post subject: [ glsa 201607-06 ] cups |
|
|
Gentoo Linux Security Advisory
Title: CUPS: Buffer overflow (GLSA 201607-06)
Severity: normal
Exploitable: remote
Date: July 16, 2016
Bug(s): #539582
ID: 201607-06
Synopsis
A buffer overflow in CUPS might allow remote attackers to execute
arbitrary code.
Background
CUPS, the Common Unix Printing System, is a full-featured print server.
Affected Packages
Package: net-print/cups
Vulnerable: < 2.0.2-r1
Unaffected: >= 2.0.2-r1
Architectures: All supported architectures
Description
A vulnerability has been discovered in CUPS concerning the handling of
compressed raster files.
Impact
A remote attacker could possibly execute arbitrary code with the
privileges of the process.
Workaround
There is no known workaround at this time.
Resolution
All CUPS users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=net-print/cups-2.0.2-r1"
|
References
CVE-2014-9679 |
|