Vulnerability Name:

CVE-2008-3641 (CCN-45779)

Assigned:2008-10-09
Published:2008-10-09
Updated:2018-10-11
Summary:The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
5.8 Medium (REDHAT CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P)
4.3 Medium (REDHAT Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-399
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2008-3641

Source: APPLE
Type: Vendor Advisory
APPLE-SA-2008-10-09

Source: SUSE
Type: UNKNOWN
SUSE-SR:2008:021

Source: SUSE
Type: UNKNOWN
SUSE-SR:2009:002

Source: CCN
Type: RHSA-2008-0937
Important: cups security update

Source: SECUNIA
Type: Vendor Advisory
32084

Source: CCN
Type: SA32222
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32222

Source: CCN
Type: SA32226
CUPS Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32226

Source: SECUNIA
Type: Vendor Advisory
32284

Source: SECUNIA
Type: Vendor Advisory
32292

Source: SECUNIA
Type: Vendor Advisory
32316

Source: SECUNIA
Type: UNKNOWN
32331

Source: CCN
Type: SA33085
Avaya Messaging Storage Server CUPS Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
33085

Source: SECUNIA
Type: UNKNOWN
33111

Source: SECUNIA
Type: UNKNOWN
33568

Source: CCN
Type: SECTRACK ID: 1021031
CUPS Bug in HPGL Filter Lets Remote Users Execute Arbitrary Code

Source: SUNALERT
Type: UNKNOWN
261088

Source: CCN
Type: Sun Alert ID: 261088
Multiple Security Vulnerabilities in Common UNIX Printing System (CUPS) May Allow a Remote User to Execute Arbitrary Code

Source: CCN
Type: Apple Web site
About Security Update 2008-007

Source: CONFIRM
Type: Vendor Advisory
http://support.apple.com/kb/HT3216

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2008-470.htm

Source: CCN
Type: ASA-2008-470
cups security update (RHSA-2008-0937)

Source: CCN
Type: CUPS Article #575
Common UNIX Printing System 1.3.9

Source: CONFIRM
Type: UNKNOWN
http://www.cups.org/articles.php?L575

Source: CCN
Type: CUPS Release Notes, October 9, 2008
CUPS 1.3.9

Source: CCN
Type: CUPS STR #2911
ZDI-CAN-367: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability

Source: CONFIRM
Type: Exploit
http://www.cups.org/str.php?L2911

Source: DEBIAN
Type: UNKNOWN
DSA-1656

Source: DEBIAN
Type: DSA-1656
cupsys -- several vulnerabilities

Source: CCN
Type: GLSA-200812-11
CUPS: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200812-11

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2008:211

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0937

Source: BUGTRAQ
Type: UNKNOWN
20081010 ZDI-08-067: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability

Source: BID
Type: Patch
31681

Source: CCN
Type: BID-31681
RETIRED: Apple Mac OS X 2008-007 Multiple Security Vulnerabilities

Source: BID
Type: UNKNOWN
31688

Source: CCN
Type: BID-31688
CUPS 'HP-GL/2' Filter Remote Code Execution Vulnerability

Source: SECTRACK
Type: UNKNOWN
1021031

Source: CCN
Type: TLSA-2008-43
Multiple vulnerabilities exist in cups

Source: CCN
Type: USN-656-1
CUPS vulnerabilities

Source: VUPEN
Type: UNKNOWN
ADV-2008-2780

Source: VUPEN
Type: UNKNOWN
ADV-2008-2782

Source: VUPEN
Type: UNKNOWN
ADV-2008-3401

Source: VUPEN
Type: UNKNOWN
ADV-2009-1568

Source: MISC
Type: UNKNOWN
http://www.zerodayinitiative.com/advisories/ZDI-08-067

Source: XF
Type: UNKNOWN
cups-hpgl-code-execution(45779)

Source: XF
Type: UNKNOWN
cups-hpgl-code-execution(45779)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9666

Source: UBUNTU
Type: UNKNOWN
USN-656-1

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-8801

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-8844

Source: SUSE
Type: SUSE-SR:2008:021
SUSE Security Summary Report

Source: SUSE
Type: SUSE-SR:2009:002
SUSE Security Summary Report

Source: CCN
Type: ZDI-08-067
Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apple:cups:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.5-1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.5-2:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.6-1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.6-2:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.6-3:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.9-1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.10-1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.12:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.13:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.14:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.15:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.16:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.17:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.18:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:rc3:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:rc4:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.19:rc5:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc3:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc4:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc5:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.20:rc6:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.21:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.21:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.21:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.22:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.22:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.22:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.23:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.1.23:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2:b1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2:b2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2:rc3:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3:b1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3:rc1:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3:rc2:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.4:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.5:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.7:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:*:*:*:*:*:*:*:* (Version <= 1.3.8)

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

    • Configuration RedHat 9:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:apple:cups:1.3.5:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.7:*:*:*:*:*:*:*
  • OR cpe:/a:apple:cups:1.3.8:*:*:*:*:*:*:*
  • AND
  • cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:6.06:*:lts:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:x86_64:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:fuji:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:*:*:personal:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:*:*:multimedia:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:x86-64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.04:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.10:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1:*:x86-64:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:8.04:*:lts:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_89:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_89:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_95::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_95::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_88:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_88:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_87::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_87::sparc:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.5.5:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_100::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_100::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_102::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_102::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_91::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_91::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_90::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_90::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_101::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_101::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_92::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_92::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_93::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_94::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_99::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_98::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_97::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_96::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_94::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_93::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_99::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_97::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_98::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_96::x86:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20083641
    V
    		CVE-2008-3641
    2022-06-30
    oval:org.opensuse.security:def:42285
    P
    		Security update for e2fsprogs (Important)
    2022-05-16
    oval:org.opensuse.security:def:112129
    P
    		cups-2.3.3op2-4.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:26220
    P
    		Security update for MozillaFirefox (Important) (in QA)
    2022-01-14
    oval:org.opensuse.security:def:31755
    P
    		Security update for libvirt (Important)
    2022-01-10
    oval:org.opensuse.security:def:33067
    P
    		Security update for libqt4 (Important)
    2021-12-22
    oval:org.opensuse.security:def:32236
    P
    		Security update for MozillaFirefox (Important)
    2021-12-12
    oval:org.opensuse.security:def:31716
    P
    		Security update for mozilla-nss (Important)
    2021-12-06
    oval:org.opensuse.security:def:31712
    P
    		Security update for xen (Moderate)
    2021-12-01
    oval:org.opensuse.security:def:31311
    P
    		Security update for java-1_8_0-openjdk (Important)
    2021-11-23
    oval:org.opensuse.security:def:105665
    P
    		Security update for samba (Important)
    2021-11-16
    oval:org.opensuse.security:def:26160
    P
    		Security update for binutils (Moderate)
    2021-11-09
    oval:org.opensuse.security:def:33028
    P
    		Security update for git (Low)
    2021-10-20
    oval:org.opensuse.security:def:26139
    P
    		Security update for libvirt (Moderate)
    2021-10-04
    oval:org.opensuse.security:def:32180
    P
    		Security update for file (Important)
    2021-09-02
    oval:org.opensuse.security:def:26107
    P
    		Security update for openssl-1_0_0 (Important)
    2021-08-24
    oval:org.opensuse.security:def:32165
    P
    		Security update for cpio (Important)
    2021-08-23
    oval:org.opensuse.security:def:31667
    P
    		Security update for fetchmail (Moderate)
    2021-08-18
    oval:org.opensuse.security:def:31234
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-07-27
    oval:org.opensuse.security:def:31656
    P
    		Security update for systemd (Important)
    2021-07-21
    oval:org.opensuse.security:def:26079
    P
    		Security update for gupnp (Important)
    2021-06-18
    oval:org.opensuse.security:def:32121
    P
    		Security update for webkit2gtk3 (Important)
    2021-06-17
    oval:org.opensuse.security:def:42087
    P
    		Security update for libxml2 (Moderate)
    2021-06-09
    oval:org.opensuse.security:def:36104
    P
    		cups-1.3.9-8.46.56.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36386
    P
    		cups-devel-1.3.9-8.46.56.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:42511
    P
    		cups-1.3.9-8.46.56.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:32099
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:26058
    P
    		Security update for postgresql10 (Moderate)
    2021-05-27
    oval:org.opensuse.security:def:31611
    P
    		Security update for libnettle (Important)
    2021-04-28
    oval:org.opensuse.security:def:31160
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-04-28
    oval:org.opensuse.security:def:31149
    P
    		Security update for spamassassin (Important)
    2021-04-12
    oval:org.opensuse.security:def:31148
    P
    		Security update for fwupdate (Important)
    2021-04-08
    oval:org.opensuse.security:def:32060
    P
    		Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)
    2021-04-07
    oval:org.opensuse.security:def:32285
    P
    		Security update for MozillaFirefox (Important)
    2021-03-31
    oval:org.opensuse.security:def:31368
    P
    		Security update for openssl (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:31366
    P
    		Security update for wavpack (Important)
    2021-03-24
    oval:org.opensuse.security:def:26204
    P
    		Security update for freeradius-server (Low)
    2021-03-04
    oval:org.opensuse.security:def:31346
    P
    		Security update for java-1_8_0-openjdk (Moderate)
    2021-02-19
    oval:org.opensuse.security:def:31345
    P
    		Security update for krb5-appl (Important)
    2021-02-19
    oval:org.opensuse.security:def:26146
    P
    		Security update for python3 (Important)
    2021-02-08
    oval:org.opensuse.security:def:31655
    P
    		Security update for MozillaFirefox (Important)
    2021-01-29
    oval:org.opensuse.security:def:31357
    P
    		Security update for MozillaFirefox (Important)
    2021-01-12
    oval:org.opensuse.security:def:31219
    P
    		Security update for openssh (Moderate)
    2021-01-05
    oval:org.opensuse.security:def:31570
    P
    		Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:32011
    P
    		Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2020-12-07
    oval:org.opensuse.security:def:31087
    P
    		Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP3) (Important)
    2020-12-07
    oval:org.opensuse.security:def:31563
    P
    		Security update for mutt (Important)
    2020-12-07
    oval:org.opensuse.security:def:41940
    P
    		cups-1.3.9-8.30.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35878
    P
    		cups-1.3.9-8.46.46.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35533
    P
    		cups-1.3.9-8.30.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35680
    P
    		cups-1.3.9-8.44.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:25654
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:31788
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26512
    P
    		Security update for pdns-recursor (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25816
    P
    		Security update for libqt4 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32498
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31001
    P
    		Security update for java-1_6_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:25435
    P
    		Security update for ghostscript (Important)
    2020-12-01
    oval:org.opensuse.security:def:31602
    P
    		Security update for tomcat6
    2020-12-01
    oval:org.opensuse.security:def:32803
    P
    		w3m on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25729
    P
    		Security update for spamassassin (Important)
    2020-12-01
    oval:org.opensuse.security:def:31937
    P
    		Security update for glibc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26614
    P
    		mozilla-xulrunner190 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26498
    P
    		Security update for nextcloud (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31013
    P
    		Security update for java-1_7_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:25573
    P
    		Security update for ghostscript (Important)
    2020-12-01
    oval:org.opensuse.security:def:31814
    P
    		Security update for apache2-mod_nss (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25938
    P
    		Security update for evince (Important)
    2020-12-01
    oval:org.opensuse.security:def:26667
    P
    		apache2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25085
    P
    		Security update for permissions (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25808
    P
    		Security update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31902
    P
    		Security update for MozillaFirefox, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:26877
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25428
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:31431
    P
    		Security update for php53 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27349
    P
    		mailx-openssl1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25160
    P
    		Security update for icu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25910
    P
    		Security update for gstreamer-0_10-plugins-base (Low)
    2020-12-01
    oval:org.opensuse.security:def:31968
    P
    		Security update for ipmitool (Important)
    2020-12-01
    oval:org.opensuse.security:def:25440
    P
    		Security update for python-xdg (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26283
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32346
    P
    		Security update for sqlite3 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25936
    P
    		Security update for libreoffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25369
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25963
    P
    		Security update for ImageMagick (Important)
    2020-12-01
    oval:org.opensuse.security:def:32645
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25632
    P
    		Security update for aspell (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31799
    P
    		Security update for SDL (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26371
    P
    		Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:26011
    P
    		Security update for gwenhywfar (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25510
    P
    		Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:26645
    P
    		unrar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25770
    P
    		Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:26429
    P
    		Security update for keepalived (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31571
    P
    		Security update for strongswan (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25714
    P
    		Security update for libpng16 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31777
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:25232
    P
    		Security update for sudo (Important)
    2020-12-01
    oval:org.opensuse.security:def:26005
    P
    		Security update for libcdio (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27102
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25653
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26361
    P
    		Security update for kopete (Low)
    2020-12-01
    oval:org.opensuse.security:def:25802
    P
    		Recommended update for LibreOffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32459
    P
    		Security update for xorg-x11-libX11 (Important)
    2020-12-01
    oval:org.opensuse.security:def:25307
    P
    		Security update for libX11 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31515
    P
    		Security update for quagga (Low)
    2020-12-01
    oval:org.opensuse.security:def:25665
    P
    		Security update for libqt5-qtbase (Important)
    2020-12-01
    oval:org.opensuse.security:def:31880
    P
    		Security update for dhcpcd (Important)
    2020-12-01
    oval:org.opensuse.security:def:26565
    P
    		hplip on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25860
    P
    		Security update for bash (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31002
    P
    		Security update for java-1_6_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:25516
    P
    		Security update for file-roller (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31758
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:32842
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25857
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32024
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26653
    P
    		xorg-x11-Xvnc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26533
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25084
    P
    		Security update for clamav (Important)
    2020-12-01
    oval:org.opensuse.security:def:25657
    P
    		Security update for graphviz (Low)
    2020-12-01
    oval:org.opensuse.security:def:31863
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26842
    P
    		xen on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25995
    P
    		Security update for mariadb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26711
    P
    		gnutls on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25096
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25861
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31924
    P
    		Security update for ghostscript-library (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25429
    P
    		Security update for libzypp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26230
    P
    		Security update for libreoffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32324
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:27384
    P
    		cups-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25935
    P
    		Security update for libcares2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25288
    P
    		Security update for webkit2gtk3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31455
    P
    		Security update for postgresql10 (Important)
    2020-12-01
    oval:org.opensuse.security:def:25949
    P
    		Security update for icu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32606
    P
    		syslog-ng on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25504
    P
    		Security update for libvirt (Important)
    2020-12-01
    oval:org.opensuse.security:def:26332
    P
    		Security update for karchive (Important)
    2020-12-01
    oval:org.opensuse.security:def:32390
    P
    		Security update for tomcat6 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25947
    P
    		Security update for freerdp (Important)
    2020-12-01
    oval:org.opensuse.security:def:25426
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26007
    P
    		Security update for libid3tag (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25713
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31955
    P
    		Security update for gstreamer-0_10-plugins-good (Important)
    2020-12-01
    oval:org.opensuse.security:def:26385
    P
    		Security update for go (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25661
    P
    		Security update for opensc (Low)
    2020-12-01
    oval:org.opensuse.security:def:26680
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25231
    P
    		Security update for gcc9 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25854
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:27067
    P
    		LibVNCServer on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31582
    P
    		Security update for tar (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26277
    P
    		Security update for libreoffice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25763
    P
    		Security Update for Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31821
    P
    		Security update for avahi (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25243
    P
    		Security update for java-1_8_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:31458
    P
    		Security update for postgresql91 (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:29185
    P
    		RHSA-2008:0937 -- cups security update (Important)
    2015-08-17
    oval:org.mitre.oval:def:17812
    P
    		USN-656-1 -- cupsys vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:18746
    P
    		DSA-1656-1 cupsys - several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:8170
    P
    		DSA-1656 cupsys -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:22723
    P
    		ELSA-2008:0937: cups security update (Important)
    2014-05-26
    oval:org.mitre.oval:def:9666
    V
    		The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.
    2013-04-29
    oval:org.debian:def:1656
    V
    		several vulnerabilities
    2008-10-20
    oval:com.redhat.rhsa:def:20080937
    P
    		RHSA-2008:0937: cups security update (Important)
    2008-10-10
    BACK
    apple cups 1.1
    apple cups 1.1.1
    apple cups 1.1.2
    apple cups 1.1.3
    apple cups 1.1.4
    apple cups 1.1.5
    apple cups 1.1.5-1
    apple cups 1.1.5-2
    apple cups 1.1.6
    apple cups 1.1.6-1
    apple cups 1.1.6-2
    apple cups 1.1.6-3
    apple cups 1.1.7
    apple cups 1.1.8
    apple cups 1.1.9
    apple cups 1.1.9-1
    apple cups 1.1.10
    apple cups 1.1.10-1
    apple cups 1.1.11
    apple cups 1.1.12
    apple cups 1.1.13
    apple cups 1.1.14
    apple cups 1.1.15
    apple cups 1.1.16
    apple cups 1.1.17
    apple cups 1.1.18
    apple cups 1.1.19
    apple cups 1.1.19 rc1
    apple cups 1.1.19 rc2
    apple cups 1.1.19 rc3
    apple cups 1.1.19 rc4
    apple cups 1.1.19 rc5
    apple cups 1.1.20
    apple cups 1.1.20 rc1
    apple cups 1.1.20 rc2
    apple cups 1.1.20 rc3
    apple cups 1.1.20 rc4
    apple cups 1.1.20 rc5
    apple cups 1.1.20 rc6
    apple cups 1.1.21
    apple cups 1.1.21 rc1
    apple cups 1.1.21 rc2
    apple cups 1.1.22
    apple cups 1.1.22 rc1
    apple cups 1.1.22 rc2
    apple cups 1.1.23
    apple cups 1.1.23 rc1
    apple cups 1.2 b1
    apple cups 1.2 b2
    apple cups 1.2 rc1
    apple cups 1.2 rc2
    apple cups 1.2 rc3
    apple cups 1.2.0
    apple cups 1.2.1
    apple cups 1.2.2
    apple cups 1.2.3
    apple cups 1.2.4
    apple cups 1.2.5
    apple cups 1.2.6
    apple cups 1.2.7
    apple cups 1.2.8
    apple cups 1.2.9
    apple cups 1.2.10
    apple cups 1.2.11
    apple cups 1.2.12
    apple cups 1.3 b1
    apple cups 1.3 rc1
    apple cups 1.3 rc2
    apple cups 1.3.0
    apple cups 1.3.1
    apple cups 1.3.2
    apple cups 1.3.3
    apple cups 1.3.4
    apple cups 1.3.5
    apple cups 1.3.6
    apple cups 1.3.7
    apple cups *
    apple cups 1.3.5
    apple cups 1.3.6
    apple cups 1.3.7
    apple cups 1.3.8
    gentoo linux *
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    mandrakesoft mandrake linux corporate server 3.0
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    canonical ubuntu 6.06
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 3.0
    turbolinux turbolinux fuji
    turbolinux turbolinux personal *
    turbolinux turbolinux multimedia *
    redhat enterprise linux 5
    redhat enterprise linux 5
    mandrakesoft mandrake linux 2007.1
    mandrakesoft mandrake linux 2008.0
    debian debian linux 4.0
    canonical ubuntu 7.04
    redhat enterprise linux 5
    canonical ubuntu 7.10
    mandrakesoft mandrake linux 2008.0
    mandrakesoft mandrake linux 2008.1 x86_64
    mandrakesoft mandrake linux 2007.1
    apple mac os x 10.4.11
    apple mac os x server 10.4.11
    mandrakesoft mandrake linux 2008.1
    canonical ubuntu 8.04
    sun opensolaris build_snv_89
    sun opensolaris build_snv_89
    sun opensolaris build_snv_95
    sun opensolaris build_snv_95
    sun opensolaris build_snv_88
    sun opensolaris build_snv_88
    sun opensolaris build_snv_87
    sun opensolaris build_snv_87
    apple mac os x 10.5.5
    apple mac os x server 10.5.5
    mandriva linux 2009.0
    mandriva linux 2009.0 -
    sun opensolaris build_snv_100
    sun opensolaris build_snv_100
    sun opensolaris build_snv_102
    sun opensolaris build_snv_102
    sun opensolaris build_snv_91
    sun opensolaris build_snv_91
    sun opensolaris build_snv_90
    sun opensolaris build_snv_90
    sun opensolaris build_snv_101
    sun opensolaris build_snv_101
    sun opensolaris build_snv_92
    sun opensolaris build_snv_92
    sun opensolaris build_snv_93
    sun opensolaris build_snv_94
    sun opensolaris build_snv_99
    sun opensolaris build_snv_98
    sun opensolaris build_snv_97
    sun opensolaris build_snv_96
    sun opensolaris build_snv_94
    sun opensolaris build_snv_93
    sun opensolaris build_snv_99
    sun opensolaris build_snv_97
    sun opensolaris build_snv_98
    sun opensolaris build_snv_96