[cupsys] [CVE-2007-5849] [CVE-2007-6358] local vulnerabilities
Bug #180296 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cupsys (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: cupsys
References:
DSA-1437-1 (http://
Quoting:
"Several local vulnerabilities have been discovered in the Common UNIX
Printing System. The Common Vulnerabilities and Exposures project
identifies the following problems:
CVE-2007-5849
Wei Wang discovered that an buffer overflow in the SNMP backend
may lead to the execution of arbitrary code.
CVE-2007-6358
Elias Pipping discovered that insecure handling of a temporary
file in the pdftops.pl script may lead to local denial of service.
This vulnerability is not exploitable in the default configuration."
To post a comment you must log in.
http:// www.ubuntu. com/usn/ usn-563- 1