diff options
| author | Dirk Meyer <dinoex@FreeBSD.org> | 2009-05-07 07:57:03 +0000 |
|---|---|---|
| committer | Dirk Meyer <dinoex@FreeBSD.org> | 2009-05-07 07:57:03 +0000 |
| commit | c7e8ef1b8f87689be2bda19c4982c55331a242e6 (patch) | |
| tree | 85c4618b9f4dadad027da073fa3d3e7d1b0d5cf8 /security | |
| parent | 195f72b60ac8d672a8fc7502291ce2e7e907a385 (diff) | |
| download | ports-c7e8ef1b8f87689be2bda19c4982c55331a242e6.tar.gz ports-c7e8ef1b8f87689be2bda19c4982c55331a242e6.zip | |
Notes
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index e134b50768ba..e75ab562d9fa 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,58 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="736e55bc-39bb-11de-a493-001b77d09812"> + <topic>cups -- remote code execution and DNS rebinding</topic> + <affects> + <package> + <name>cups-base</name> + <range><lt>1.3.10</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Gentoo security team summarizes:</p> + <blockquote + cite="http://www.gentoo.org/security/en/glsa/glsa-200904-20.xml"> + <p>The following issues were reported in CUPS:</p> + <ul> + <li>iDefense reported an integer overflow in the + _cupsImageReadTIFF() function in the "imagetops" filter, + leading to a heap-based buffer overflow (CVE-2009-0163).</li> + <li>Aaron Siegel of Apple Product Security reported that the + CUPS web interface does not verify the content of the "Host" + HTTP header properly (CVE-2009-0164).</li> + <li>Braden Thomas and Drew Yao of Apple Product Security + reported that CUPS is vulnerable to CVE-2009-0146, + CVE-2009-0147 and CVE-2009-0166, found earlier in xpdf and + poppler.</li> + </ul> + <p>A remote attacker might send or entice a user to send a + specially crafted print job to CUPS, possibly resulting in the + execution of arbitrary code with the privileges of the + configured CUPS user -- by default this is "lp", or a Denial + of Service. Furthermore, the web interface could be used to + conduct DNS rebinding attacks.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2009-0163</cvename> + <cvename>CVE-2009-0164</cvename> + <cvename>CVE-2009-0146</cvename> + <cvename>CVE-2009-0147</cvename> + <cvename>CVE-2009-0166</cvename> + <bid>34571</bid> + <bid>34665</bid> + <bid>34568</bid> + <url>http://www.cups.org/articles.php?L582</url> + </references> + <dates> + <discovery>2009-05-05</discovery> + <entry>2009-05-07</entry> + </dates> + </vuln> + <vuln vid="fbc8413f-2f7a-11de-9a3f-001b77d09812"> <topic>FreeBSD -- remotely exploitable crash in OpenSSL</topic> <affects> |