Oval Definition:oval:com.redhat.rhsa:def:20081028
Revision Date:2008-12-15Version:637
Title:RHSA-2008:1028: cups security update (Moderate)
Description:The Common UNIX® Printing System (CUPS) provides a portable printing layer for UNIX operating systems.

  • An integer overflow flaw, leading to a heap buffer overflow, was discovered in the Portable Network Graphics (PNG) decoding routines used by the CUPS image-converting filters, "imagetops" and "imagetoraster". An attacker could create a malicious PNG file that could, potentially, execute arbitrary code as the "lp" user if the file was printed. (CVE-2008-5286)

    CUPS users should upgrade to these updated packages, which contain a backported patch to correct this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-5286
    RHSA-2008:1028
    RHSA-2008:1028-01
    RHSA-2008:1028-01
    Platform(s):Red Hat Enterprise Linux 3
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • cups-devel is earlier than 1:1.1.17-13.3.55
  • AND cups-devel is signed with Red Hat master key
  • cups-libs is earlier than 1:1.1.17-13.3.55
  • AND cups-libs is signed with Red Hat master key
  • cups is earlier than 1:1.1.17-13.3.55
  • AND cups is signed with Red Hat master key
    • BACK