Oval Definition:oval:org.mitre.oval:def:21140
Revision Date:2014-02-17Version:12
Title:RHSA-2013:0580: cups security update (Moderate)
Description:CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2013:0580
CVE-2012-5519
RHSA-2013:0580-01
Platform(s):CentOS Linux 5
CentOS Linux 6
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):cups
Definition Synopsis
  • Operation system section
  • Redhat 6 or Centos 6 release
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages section
  • cups-php is earlier than 1:1.4.2-50.el6_4.4
  • OR cups-lpd is earlier than 1:1.4.2-50.el6_4.4
  • OR cups-devel is earlier than 1:1.4.2-50.el6_4.4
  • OR cups is earlier than 1:1.4.2-50.el6_4.4
  • OR cups-libs is earlier than 1:1.4.2-50.el6_4.4
  • Operation system section
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • cups-devel is earlier than 1:1.3.7-30.el5_9.3
  • OR cups-lpd is earlier than 1:1.3.7-30.el5_9.3
  • OR cups is earlier than 1:1.3.7-30.el5_9.3
  • OR cups-libs is earlier than 1:1.3.7-30.el5_9.3
    • BACK