Oval Definition:oval:com.redhat.rhsa:def:20080498
Revision Date:2008-06-05Version:636
Title:RHSA-2008:0498: cups security update (Moderate)
Description:The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems.

  • An integer overflow flaw leading to a heap buffer overflow was discovered in the Portable Network Graphics (PNG) decoding routines used by the CUPS image converting filters "imagetops" and "imagetoraster". An attacker could create a malicious PNG file that could possibly execute arbitrary code as the "lp" user if the file was printed. (CVE-2008-1722)

    All CUPS users are advised to upgrade to these updated packages, which contain backported patch to resolve this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-1722
    RHSA-2008:0498
    RHSA-2008:0498-02
    RHSA-2008:0498-02
    Platform(s):Red Hat Enterprise Linux 3
    Red Hat Enterprise Linux 4
    Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • cups is earlier than 1:1.1.17-13.3.53
  • AND cups is signed with Red Hat master key
  • cups-libs is earlier than 1:1.1.17-13.3.53
  • AND cups-libs is signed with Red Hat master key
  • cups-devel is earlier than 1:1.1.17-13.3.53
  • AND cups-devel is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • cups is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups is signed with Red Hat master key
  • cups-libs is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-libs is signed with Red Hat master key
  • cups-devel is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-devel is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • cups-devel is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-devel is signed with Red Hat redhatrelease key
  • cups-lpd is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-lpd is signed with Red Hat redhatrelease key
  • cups is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups is signed with Red Hat redhatrelease key
  • cups-libs is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-libs is signed with Red Hat redhatrelease key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • cups is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups is signed with Red Hat redhatrelease2 key
  • cups-devel is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-devel is signed with Red Hat redhatrelease2 key
  • cups-libs is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-libs is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • cups is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups is signed with Red Hat redhatrelease2 key
  • cups-devel is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-devel is signed with Red Hat redhatrelease2 key
  • cups-libs is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-libs is signed with Red Hat redhatrelease2 key
  • cups-lpd is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-lpd is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • cups is earlier than 1:1.1.17-13.3.53
  • AND cups is signed with Red Hat master key
  • cups-devel is earlier than 1:1.1.17-13.3.53
  • AND cups-devel is signed with Red Hat master key
  • cups-libs is earlier than 1:1.1.17-13.3.53
  • AND cups-libs is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • cups is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups is signed with Red Hat master key
  • cups-devel is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-devel is signed with Red Hat master key
  • cups-libs is earlier than 1:1.1.22-0.rc1.9.20.2.el4_6.8
  • AND cups-libs is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • cups is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups is signed with Red Hat redhatrelease key
  • cups-devel is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-devel is signed with Red Hat redhatrelease key
  • cups-libs is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-libs is signed with Red Hat redhatrelease key
  • cups-lpd is earlier than 1:1.2.4-11.18.el5_2.1
  • AND cups-lpd is signed with Red Hat redhatrelease key
    • BACK