Launchpad CVE tracker

CVE 2007-5849

Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.

Related bugs and status

CVE-2007-5849 (Candidate) is related to these bugs:

Bug #177075: [Gutsy SRU Request] CUPS 1.3.x lists network interfaces only at startup (regression)

		In	Importance	Status
177075	[Gutsy SRU Request] CUPS 1.3.x lists network interfaces only at startup (regression)	cupsys (Ubuntu)	Medium	Fix Released
177075	[Gutsy SRU Request] CUPS 1.3.x lists network interfaces only at startup (regression)	cups (Debian)	Undecided	Fix Released
177075	[Gutsy SRU Request] CUPS 1.3.x lists network interfaces only at startup (regression)	cupsys (Ubuntu Gutsy)	Undecided	Fix Released

Bug #180296: [cupsys] [CVE-2007-5849] [CVE-2007-6358] local vulnerabilities

Summary				In	Importance	Status
	180296	[cupsys] [CVE-2007-5849] [CVE-2007-6358] local vulnerabilities		cupsys (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2007-5849

References