Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2010-0393 (GCVE-0-2010-0393)
Vulnerability from cvelistv5 – Published: 2010-03-05 19:00 – Updated: 2024-08-07 00:45
VLAI?
EPSS
Summary
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T00:45:12.192Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.cups.org/str.php?L3482"
},
{
"name": "USN-906-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"name": "38524",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/38524"
},
{
"name": "APPLE-SA-2010-03-29-1",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "MDVSA-2010:072",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"name": "GLSA-201207-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"name": "MDVSA-2010:073",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.apple.com/kb/HT4077"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-03-04T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-04-01T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.cups.org/str.php?L3482"
},
{
"name": "USN-906-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"name": "38524",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/38524"
},
{
"name": "APPLE-SA-2010-03-29-1",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "MDVSA-2010:072",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"name": "GLSA-201207-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"name": "MDVSA-2010:073",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.apple.com/kb/HT4077"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2010-0393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.cups.org/str.php?L3482",
"refsource": "MISC",
"url": "http://www.cups.org/str.php?L3482"
},
{
"name": "USN-906-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"name": "38524",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/38524"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "MDVSA-2010:072",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"name": "GLSA-201207-10",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"name": "MDVSA-2010:073",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=558460",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2010-0393",
"datePublished": "2010-03-05T19:00:00",
"dateReserved": "2010-01-27T00:00:00",
"dateUpdated": "2024-08-07T00:45:12.192Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BCC3EF2F-0140-4185-9FB3-2B595B61CDC1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"69BD64BB-BDA7-4F82-8324-B7C7C941133C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C671B95-8892-4D71-87FE-BABF5CBEC144\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:cups:1.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBD0B172-FB22-4270-B73D-4489EC2F4CE6\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.\"}, {\"lang\": \"es\", \"value\": \"La funcion _cupsGetlang, tal y como se utiliza en lppasswd.c en lppasswd en CUPS v1.2.2, v1.3.7, v1.3.9, y v1.4.1, cuenta con una situacion variable para determinar el fichero que provee cadenas de localizacion de un mensaje, lo que permite a usuarios locales ganar privilegios a traves de un fichero que contiene datos de localizacion manipulados con ciertos formatos de cadena.\"}]",
"id": "CVE-2010-0393",
"lastModified": "2024-11-21T01:12:07.547",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2010-03-05T19:30:00.470",
"references": "[{\"url\": \"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201207-10.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://support.apple.com/kb/HT4077\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.cups.org/str.php?L3482\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2010:072\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2010:073\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/38524\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-906-1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=558460\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-201207-10.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://support.apple.com/kb/HT4077\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.cups.org/str.php?L3482\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2010:072\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2010:073\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/38524\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-906-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=558460\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vendorComments": "[{\"organization\": \"Red Hat\", \"comment\": \"This issue did not affected Red Hat Enterprise Linux 3 and 4 due to the lack of localization in lppasswd as provided in those releases.\\n\\nThe affected code is present in Red Hat Enterprise Linux 5, however lppasswd is not shipped setuid so is not vulnerable to this issue. If a user were to enable the setuid bit on lppasswd, the impact would only be a crash of lppasswd due to use of FORTIFY_SOURCE protections. Therefore, there are no plans to correct this issue in Red Hat Enterprise Linux 5.\", \"lastModified\": \"2010-03-09T00:00:00\"}]",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-264\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2010-0393\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2010-03-05T19:30:00.470\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.\"},{\"lang\":\"es\",\"value\":\"La funcion _cupsGetlang, tal y como se utiliza en lppasswd.c en lppasswd en CUPS v1.2.2, v1.3.7, v1.3.9, y v1.4.1, cuenta con una situacion variable para determinar el fichero que provee cadenas de localizacion de un mensaje, lo que permite a usuarios locales ganar privilegios a traves de un fichero que contiene datos de localizacion manipulados con ciertos formatos de cadena.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCC3EF2F-0140-4185-9FB3-2B595B61CDC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69BD64BB-BDA7-4F82-8324-B7C7C941133C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C671B95-8892-4D71-87FE-BABF5CBEC144\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:cups:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBD0B172-FB22-4270-B73D-4489EC2F4CE6\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201207-10.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.apple.com/kb/HT4077\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.cups.org/str.php?L3482\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:072\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:073\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/38524\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/USN-906-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=558460\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201207-10.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.apple.com/kb/HT4077\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.cups.org/str.php?L3482\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:072\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:073\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/38524\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-906-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=558460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"This issue did not affected Red Hat Enterprise Linux 3 and 4 due to the lack of localization in lppasswd as provided in those releases.\\n\\nThe affected code is present in Red Hat Enterprise Linux 5, however lppasswd is not shipped setuid so is not vulnerable to this issue. If a user were to enable the setuid bit on lppasswd, the impact would only be a crash of lppasswd due to use of FORTIFY_SOURCE protections. Therefore, there are no plans to correct this issue in Red Hat Enterprise Linux 5.\",\"lastModified\":\"2010-03-09T00:00:00\"}]}}"
}
}
CERTA-2010-AVI-143
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Mac OS X.
Description
Plusieurs vulnérabilités ont été corrigées dans Mac OS X. Elles permettent entre autres l'exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Mac OS X 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X 10.6 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.6.",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X. Elles\npermettent entre autres l\u0027ex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0511",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0511"
},
{
"name": "CVE-2010-0509",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0509"
},
{
"name": "CVE-2010-0501",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0501"
},
{
"name": "CVE-2010-0065",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0065"
},
{
"name": "CVE-2010-0498",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0498"
},
{
"name": "CVE-2010-0060",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0060"
},
{
"name": "CVE-2008-7247",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-7247"
},
{
"name": "CVE-2003-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0063"
},
{
"name": "CVE-2010-0043",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0043"
},
{
"name": "CVE-2010-0522",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0522"
},
{
"name": "CVE-2010-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0063"
},
{
"name": "CVE-2009-3559",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3559"
},
{
"name": "CVE-2009-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2901"
},
{
"name": "CVE-2009-4142",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4142"
},
{
"name": "CVE-2009-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3009"
},
{
"name": "CVE-2010-0059",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0059"
},
{
"name": "CVE-2010-0524",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0524"
},
{
"name": "CVE-2010-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0057"
},
{
"name": "CVE-2009-2693",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2693"
},
{
"name": "CVE-2010-0521",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0521"
},
{
"name": "CVE-2008-0564",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0564"
},
{
"name": "CVE-2010-0518",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0518"
},
{
"name": "CVE-2010-0513",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0513"
},
{
"name": "CVE-2009-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2417"
},
{
"name": "CVE-2008-0888",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0888"
},
{
"name": "CVE-2009-3558",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3558"
},
{
"name": "CVE-2009-3095",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3095"
},
{
"name": "CVE-2009-2902",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2902"
},
{
"name": "CVE-2010-0517",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0517"
},
{
"name": "CVE-2010-0535",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0535"
},
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
},
{
"name": "CVE-2009-3557",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3557"
},
{
"name": "CVE-2009-0580",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0580"
},
{
"name": "CVE-2010-0042",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0042"
},
{
"name": "CVE-2010-0534",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0534"
},
{
"name": "CVE-2010-0497",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0497"
},
{
"name": "CVE-2008-4456",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4456"
},
{
"name": "CVE-2009-4143",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4143"
},
{
"name": "CVE-2010-0058",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0058"
},
{
"name": "CVE-2010-0041",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0041"
},
{
"name": "CVE-2010-0508",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0508"
},
{
"name": "CVE-2010-0506",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0506"
},
{
"name": "CVE-2010-0533",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0533"
},
{
"name": "CVE-2010-0507",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0507"
},
{
"name": "CVE-2010-0504",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0504"
},
{
"name": "CVE-2009-0316",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0316"
},
{
"name": "CVE-2010-0526",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0526"
},
{
"name": "CVE-2010-0510",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0510"
},
{
"name": "CVE-2009-1904",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1904"
},
{
"name": "CVE-2010-0500",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0500"
},
{
"name": "CVE-2008-5302",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5302"
},
{
"name": "CVE-2009-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2042"
},
{
"name": "CVE-2010-0064",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0064"
},
{
"name": "CVE-2009-0033",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0033"
},
{
"name": "CVE-2009-2446",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2446"
},
{
"name": "CVE-2009-2801",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2801"
},
{
"name": "CVE-2010-0525",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0525"
},
{
"name": "CVE-2010-0516",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0516"
},
{
"name": "CVE-2010-0502",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0502"
},
{
"name": "CVE-2010-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0062"
},
{
"name": "CVE-2008-2712",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-2712"
},
{
"name": "CVE-2009-2906",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2906"
},
{
"name": "CVE-2010-0505",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0505"
},
{
"name": "CVE-2008-5303",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5303"
},
{
"name": "CVE-2009-0781",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0781"
},
{
"name": "CVE-2009-4214",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4214"
},
{
"name": "CVE-2009-0783",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0783"
},
{
"name": "CVE-2009-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0689"
},
{
"name": "CVE-2008-5515",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5515"
},
{
"name": "CVE-2006-1329",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1329"
},
{
"name": "CVE-2010-0514",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0514"
},
{
"name": "CVE-2009-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0037"
},
{
"name": "CVE-2010-0515",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0515"
},
{
"name": "CVE-2009-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2422"
},
{
"name": "CVE-2010-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0056"
},
{
"name": "CVE-2010-0512",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0512"
},
{
"name": "CVE-2009-2632",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2632"
},
{
"name": "CVE-2009-0688",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0688"
},
{
"name": "CVE-2008-4101",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4101"
},
{
"name": "CVE-2010-0537",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0537"
},
{
"name": "CVE-2010-0519",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0519"
},
{
"name": "CVE-2010-0523",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0523"
},
{
"name": "CVE-2010-0520",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0520"
},
{
"name": "CVE-2010-0503",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0503"
},
{
"name": "CVE-2010-0055",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0055"
}
],
"links": [],
"reference": "CERTA-2010-AVI-143",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-03-30T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple MacOS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT4077 du 29 mars 2010",
"url": "http://support.apple.com/kb/HT4077"
}
]
}
CERTA-2010-AVI-110
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans CUPS permet une élévation de privilèges.
Description
Un utilisateur malintentionné peut exploiter le logiciel CUPS par le biais de l'outil lppasswd, qui comporte des erreurs d'implémentation. L'exploitation réussie de cette vulnérabilité permet à un utilisateur d'élever ses privilèges sur le système.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CUPS version 1.x.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eCUPS version 1.x.\u003c/p\u003e",
"content": "## Description\n\nUn utilisateur malintentionn\u00e9 peut exploiter le logiciel CUPS par le\nbiais de l\u0027outil lppasswd, qui comporte des erreurs d\u0027impl\u00e9mentation.\nL\u0027exploitation r\u00e9ussie de cette vuln\u00e9rabilit\u00e9 permet \u00e0 un utilisateur\nd\u0027\u00e9lever ses privil\u00e8ges sur le syst\u00e8me.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
}
],
"links": [],
"reference": "CERTA-2010-AVI-110",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-03-05T00:00:00.000000"
}
],
"risks": [
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans CUPS permet une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans CUPS",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 CUPS 3482",
"url": "http://www.cups.org/str.php?L3482"
}
]
}
CERTA-2010-AVI-182
Vulnerability from certfr_avis - Published: - Updated:
Deux vulnérabilités ont été découvertes dans CUPS, l'une permettant une élévation de privilèges et l'autre un déni de service à distance.
Description
Deux vulnérabilités ont été découvertes dans CUPS :
- une erreur d'implémentation dans l'ordonnanceur provoque un déni de service à distance par le biais d'une requête spécialement conçue ;
- une erreur d'implémentation dans lppasswd permet une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CUPS versions antérieures à 1.4.3.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eCUPS versions ant\u00e9rieures \u00e0 1.4.3.\u003c/p\u003e",
"content": "## Description\n\nDeux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans CUPS :\n\n- une erreur d\u0027impl\u00e9mentation dans l\u0027ordonnanceur provoque un d\u00e9ni de\n service \u00e0 distance par le biais d\u0027une requ\u00eate sp\u00e9cialement con\u00e7ue ;\n- une erreur d\u0027impl\u00e9mentation dans lppasswd permet une \u00e9l\u00e9vation de\n privil\u00e8ges.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
},
{
"name": "CVE-2009-3553",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3553"
}
],
"links": [],
"reference": "CERTA-2010-AVI-182",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-04-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Deux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans CUPS, l\u0027une permettant une\n\u00e9l\u00e9vation de privil\u00e8ges et l\u0027autre un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans CUPS",
"vendor_advisories": [
{
"published_at": null,
"title": "Note de version CUPS du 30 mars 2010",
"url": "http://www.cups.org/documentation.php/relnotes.html"
}
]
}
CERTA-2010-AVI-182
Vulnerability from certfr_avis - Published: - Updated:
Deux vulnérabilités ont été découvertes dans CUPS, l'une permettant une élévation de privilèges et l'autre un déni de service à distance.
Description
Deux vulnérabilités ont été découvertes dans CUPS :
- une erreur d'implémentation dans l'ordonnanceur provoque un déni de service à distance par le biais d'une requête spécialement conçue ;
- une erreur d'implémentation dans lppasswd permet une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CUPS versions antérieures à 1.4.3.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eCUPS versions ant\u00e9rieures \u00e0 1.4.3.\u003c/p\u003e",
"content": "## Description\n\nDeux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans CUPS :\n\n- une erreur d\u0027impl\u00e9mentation dans l\u0027ordonnanceur provoque un d\u00e9ni de\n service \u00e0 distance par le biais d\u0027une requ\u00eate sp\u00e9cialement con\u00e7ue ;\n- une erreur d\u0027impl\u00e9mentation dans lppasswd permet une \u00e9l\u00e9vation de\n privil\u00e8ges.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
},
{
"name": "CVE-2009-3553",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3553"
}
],
"links": [],
"reference": "CERTA-2010-AVI-182",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-04-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Deux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans CUPS, l\u0027une permettant une\n\u00e9l\u00e9vation de privil\u00e8ges et l\u0027autre un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans CUPS",
"vendor_advisories": [
{
"published_at": null,
"title": "Note de version CUPS du 30 mars 2010",
"url": "http://www.cups.org/documentation.php/relnotes.html"
}
]
}
CERTA-2010-AVI-143
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Mac OS X.
Description
Plusieurs vulnérabilités ont été corrigées dans Mac OS X. Elles permettent entre autres l'exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Mac OS X 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X 10.6 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.6.",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X. Elles\npermettent entre autres l\u0027ex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0511",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0511"
},
{
"name": "CVE-2010-0509",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0509"
},
{
"name": "CVE-2010-0501",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0501"
},
{
"name": "CVE-2010-0065",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0065"
},
{
"name": "CVE-2010-0498",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0498"
},
{
"name": "CVE-2010-0060",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0060"
},
{
"name": "CVE-2008-7247",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-7247"
},
{
"name": "CVE-2003-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0063"
},
{
"name": "CVE-2010-0043",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0043"
},
{
"name": "CVE-2010-0522",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0522"
},
{
"name": "CVE-2010-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0063"
},
{
"name": "CVE-2009-3559",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3559"
},
{
"name": "CVE-2009-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2901"
},
{
"name": "CVE-2009-4142",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4142"
},
{
"name": "CVE-2009-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3009"
},
{
"name": "CVE-2010-0059",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0059"
},
{
"name": "CVE-2010-0524",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0524"
},
{
"name": "CVE-2010-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0057"
},
{
"name": "CVE-2009-2693",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2693"
},
{
"name": "CVE-2010-0521",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0521"
},
{
"name": "CVE-2008-0564",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0564"
},
{
"name": "CVE-2010-0518",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0518"
},
{
"name": "CVE-2010-0513",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0513"
},
{
"name": "CVE-2009-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2417"
},
{
"name": "CVE-2008-0888",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0888"
},
{
"name": "CVE-2009-3558",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3558"
},
{
"name": "CVE-2009-3095",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3095"
},
{
"name": "CVE-2009-2902",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2902"
},
{
"name": "CVE-2010-0517",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0517"
},
{
"name": "CVE-2010-0535",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0535"
},
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
},
{
"name": "CVE-2009-3557",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3557"
},
{
"name": "CVE-2009-0580",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0580"
},
{
"name": "CVE-2010-0042",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0042"
},
{
"name": "CVE-2010-0534",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0534"
},
{
"name": "CVE-2010-0497",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0497"
},
{
"name": "CVE-2008-4456",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4456"
},
{
"name": "CVE-2009-4143",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4143"
},
{
"name": "CVE-2010-0058",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0058"
},
{
"name": "CVE-2010-0041",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0041"
},
{
"name": "CVE-2010-0508",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0508"
},
{
"name": "CVE-2010-0506",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0506"
},
{
"name": "CVE-2010-0533",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0533"
},
{
"name": "CVE-2010-0507",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0507"
},
{
"name": "CVE-2010-0504",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0504"
},
{
"name": "CVE-2009-0316",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0316"
},
{
"name": "CVE-2010-0526",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0526"
},
{
"name": "CVE-2010-0510",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0510"
},
{
"name": "CVE-2009-1904",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1904"
},
{
"name": "CVE-2010-0500",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0500"
},
{
"name": "CVE-2008-5302",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5302"
},
{
"name": "CVE-2009-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2042"
},
{
"name": "CVE-2010-0064",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0064"
},
{
"name": "CVE-2009-0033",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0033"
},
{
"name": "CVE-2009-2446",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2446"
},
{
"name": "CVE-2009-2801",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2801"
},
{
"name": "CVE-2010-0525",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0525"
},
{
"name": "CVE-2010-0516",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0516"
},
{
"name": "CVE-2010-0502",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0502"
},
{
"name": "CVE-2010-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0062"
},
{
"name": "CVE-2008-2712",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-2712"
},
{
"name": "CVE-2009-2906",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2906"
},
{
"name": "CVE-2010-0505",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0505"
},
{
"name": "CVE-2008-5303",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5303"
},
{
"name": "CVE-2009-0781",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0781"
},
{
"name": "CVE-2009-4214",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4214"
},
{
"name": "CVE-2009-0783",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0783"
},
{
"name": "CVE-2009-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0689"
},
{
"name": "CVE-2008-5515",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5515"
},
{
"name": "CVE-2006-1329",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1329"
},
{
"name": "CVE-2010-0514",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0514"
},
{
"name": "CVE-2009-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0037"
},
{
"name": "CVE-2010-0515",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0515"
},
{
"name": "CVE-2009-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2422"
},
{
"name": "CVE-2010-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0056"
},
{
"name": "CVE-2010-0512",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0512"
},
{
"name": "CVE-2009-2632",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2632"
},
{
"name": "CVE-2009-0688",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0688"
},
{
"name": "CVE-2008-4101",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4101"
},
{
"name": "CVE-2010-0537",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0537"
},
{
"name": "CVE-2010-0519",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0519"
},
{
"name": "CVE-2010-0523",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0523"
},
{
"name": "CVE-2010-0520",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0520"
},
{
"name": "CVE-2010-0503",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0503"
},
{
"name": "CVE-2010-0055",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0055"
}
],
"links": [],
"reference": "CERTA-2010-AVI-143",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-03-30T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple MacOS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT4077 du 29 mars 2010",
"url": "http://support.apple.com/kb/HT4077"
}
]
}
CERTA-2010-AVI-110
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans CUPS permet une élévation de privilèges.
Description
Un utilisateur malintentionné peut exploiter le logiciel CUPS par le biais de l'outil lppasswd, qui comporte des erreurs d'implémentation. L'exploitation réussie de cette vulnérabilité permet à un utilisateur d'élever ses privilèges sur le système.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CUPS version 1.x.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eCUPS version 1.x.\u003c/p\u003e",
"content": "## Description\n\nUn utilisateur malintentionn\u00e9 peut exploiter le logiciel CUPS par le\nbiais de l\u0027outil lppasswd, qui comporte des erreurs d\u0027impl\u00e9mentation.\nL\u0027exploitation r\u00e9ussie de cette vuln\u00e9rabilit\u00e9 permet \u00e0 un utilisateur\nd\u0027\u00e9lever ses privil\u00e8ges sur le syst\u00e8me.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
}
],
"links": [],
"reference": "CERTA-2010-AVI-110",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-03-05T00:00:00.000000"
}
],
"risks": [
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans CUPS permet une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans CUPS",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 CUPS 3482",
"url": "http://www.cups.org/str.php?L3482"
}
]
}
FKIE_CVE-2010-0393
Vulnerability from fkie_nvd - Published: 2010-03-05 19:30 - Updated: 2025-04-11 00:51
Severity ?
Summary
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "BCC3EF2F-0140-4185-9FB3-2B595B61CDC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "69BD64BB-BDA7-4F82-8324-B7C7C941133C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*",
"matchCriteriaId": "7C671B95-8892-4D71-87FE-BABF5CBEC144",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:cups:1.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DBD0B172-FB22-4270-B73D-4489EC2F4CE6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers."
},
{
"lang": "es",
"value": "La funcion _cupsGetlang, tal y como se utiliza en lppasswd.c en lppasswd en CUPS v1.2.2, v1.3.7, v1.3.9, y v1.4.1, cuenta con una situacion variable para determinar el fichero que provee cadenas de localizacion de un mensaje, lo que permite a usuarios locales ganar privilegios a traves de un fichero que contiene datos de localizacion manipulados con ciertos formatos de cadena."
}
],
"id": "CVE-2010-0393",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-03-05T19:30:00.470",
"references": [
{
"source": "cve@mitre.org",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"source": "cve@mitre.org",
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"source": "cve@mitre.org",
"url": "http://support.apple.com/kb/HT4077"
},
{
"source": "cve@mitre.org",
"url": "http://www.cups.org/str.php?L3482"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/38524"
},
{
"source": "cve@mitre.org",
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"source": "cve@mitre.org",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://support.apple.com/kb/HT4077"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.cups.org/str.php?L3482"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/38524"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
}
],
"sourceIdentifier": "cve@mitre.org",
"vendorComments": [
{
"comment": "This issue did not affected Red Hat Enterprise Linux 3 and 4 due to the lack of localization in lppasswd as provided in those releases.\n\nThe affected code is present in Red Hat Enterprise Linux 5, however lppasswd is not shipped setuid so is not vulnerable to this issue. If a user were to enable the setuid bit on lppasswd, the impact would only be a crash of lppasswd due to use of FORTIFY_SOURCE protections. Therefore, there are no plans to correct this issue in Red Hat Enterprise Linux 5.",
"lastModified": "2010-03-09T00:00:00",
"organization": "Red Hat"
}
],
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
OPENSUSE-SU-2024:10075-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
cups-2.1.3-2.3 on GA media
Notes
Title of the patch
cups-2.1.3-2.3 on GA media
Description of the patch
These are all security issues fixed in the cups-2.1.3-2.3 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10075
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cups-2.1.3-2.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cups-2.1.3-2.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10075",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10075-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0163 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-2820 page",
"url": "https://www.suse.com/security/cve/CVE-2009-2820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3553 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3553/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0393 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0393/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0540 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0542 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0542/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1748 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2941 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5519 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5519/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-6094 page",
"url": "https://www.suse.com/security/cve/CVE-2012-6094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-2856 page",
"url": "https://www.suse.com/security/cve/CVE-2014-2856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3537 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3537/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5029 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5030 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-5031 page",
"url": "https://www.suse.com/security/cve/CVE-2014-5031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1158 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1159 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1159/"
}
],
"title": "cups-2.1.3-2.3 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10075-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cups-2.1.3-2.3.aarch64",
"product": {
"name": "cups-2.1.3-2.3.aarch64",
"product_id": "cups-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-client-2.1.3-2.3.aarch64",
"product": {
"name": "cups-client-2.1.3-2.3.aarch64",
"product_id": "cups-client-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-ddk-2.1.3-2.3.aarch64",
"product": {
"name": "cups-ddk-2.1.3-2.3.aarch64",
"product_id": "cups-ddk-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-devel-2.1.3-2.3.aarch64",
"product": {
"name": "cups-devel-2.1.3-2.3.aarch64",
"product_id": "cups-devel-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-devel-32bit-2.1.3-2.3.aarch64",
"product": {
"name": "cups-devel-32bit-2.1.3-2.3.aarch64",
"product_id": "cups-devel-32bit-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-libs-2.1.3-2.3.aarch64",
"product": {
"name": "cups-libs-2.1.3-2.3.aarch64",
"product_id": "cups-libs-2.1.3-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "cups-libs-32bit-2.1.3-2.3.aarch64",
"product": {
"name": "cups-libs-32bit-2.1.3-2.3.aarch64",
"product_id": "cups-libs-32bit-2.1.3-2.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-2.1.3-2.3.ppc64le",
"product_id": "cups-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-client-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-client-2.1.3-2.3.ppc64le",
"product_id": "cups-client-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-ddk-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-ddk-2.1.3-2.3.ppc64le",
"product_id": "cups-ddk-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-devel-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-devel-2.1.3-2.3.ppc64le",
"product_id": "cups-devel-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-devel-32bit-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-devel-32bit-2.1.3-2.3.ppc64le",
"product_id": "cups-devel-32bit-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-libs-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-libs-2.1.3-2.3.ppc64le",
"product_id": "cups-libs-2.1.3-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cups-libs-32bit-2.1.3-2.3.ppc64le",
"product": {
"name": "cups-libs-32bit-2.1.3-2.3.ppc64le",
"product_id": "cups-libs-32bit-2.1.3-2.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-2.1.3-2.3.s390x",
"product": {
"name": "cups-2.1.3-2.3.s390x",
"product_id": "cups-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-client-2.1.3-2.3.s390x",
"product": {
"name": "cups-client-2.1.3-2.3.s390x",
"product_id": "cups-client-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-ddk-2.1.3-2.3.s390x",
"product": {
"name": "cups-ddk-2.1.3-2.3.s390x",
"product_id": "cups-ddk-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-devel-2.1.3-2.3.s390x",
"product": {
"name": "cups-devel-2.1.3-2.3.s390x",
"product_id": "cups-devel-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-devel-32bit-2.1.3-2.3.s390x",
"product": {
"name": "cups-devel-32bit-2.1.3-2.3.s390x",
"product_id": "cups-devel-32bit-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-libs-2.1.3-2.3.s390x",
"product": {
"name": "cups-libs-2.1.3-2.3.s390x",
"product_id": "cups-libs-2.1.3-2.3.s390x"
}
},
{
"category": "product_version",
"name": "cups-libs-32bit-2.1.3-2.3.s390x",
"product": {
"name": "cups-libs-32bit-2.1.3-2.3.s390x",
"product_id": "cups-libs-32bit-2.1.3-2.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-2.1.3-2.3.x86_64",
"product": {
"name": "cups-2.1.3-2.3.x86_64",
"product_id": "cups-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-client-2.1.3-2.3.x86_64",
"product": {
"name": "cups-client-2.1.3-2.3.x86_64",
"product_id": "cups-client-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-ddk-2.1.3-2.3.x86_64",
"product": {
"name": "cups-ddk-2.1.3-2.3.x86_64",
"product_id": "cups-ddk-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-devel-2.1.3-2.3.x86_64",
"product": {
"name": "cups-devel-2.1.3-2.3.x86_64",
"product_id": "cups-devel-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-devel-32bit-2.1.3-2.3.x86_64",
"product": {
"name": "cups-devel-32bit-2.1.3-2.3.x86_64",
"product_id": "cups-devel-32bit-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-libs-2.1.3-2.3.x86_64",
"product": {
"name": "cups-libs-2.1.3-2.3.x86_64",
"product_id": "cups-libs-2.1.3-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "cups-libs-32bit-2.1.3-2.3.x86_64",
"product": {
"name": "cups-libs-32bit-2.1.3-2.3.x86_64",
"product_id": "cups-libs-32bit-2.1.3-2.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64"
},
"product_reference": "cups-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-2.1.3-2.3.s390x"
},
"product_reference": "cups-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64"
},
"product_reference": "cups-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-client-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64"
},
"product_reference": "cups-client-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-client-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-client-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-client-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x"
},
"product_reference": "cups-client-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-client-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64"
},
"product_reference": "cups-client-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-ddk-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64"
},
"product_reference": "cups-ddk-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-ddk-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-ddk-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-ddk-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x"
},
"product_reference": "cups-ddk-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-ddk-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64"
},
"product_reference": "cups-ddk-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64"
},
"product_reference": "cups-devel-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-devel-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x"
},
"product_reference": "cups-devel-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64"
},
"product_reference": "cups-devel-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-32bit-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64"
},
"product_reference": "cups-devel-32bit-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-32bit-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-devel-32bit-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-32bit-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x"
},
"product_reference": "cups-devel-32bit-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-devel-32bit-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64"
},
"product_reference": "cups-devel-32bit-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64"
},
"product_reference": "cups-libs-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-libs-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x"
},
"product_reference": "cups-libs-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64"
},
"product_reference": "cups-libs-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-32bit-2.1.3-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64"
},
"product_reference": "cups-libs-32bit-2.1.3-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-32bit-2.1.3-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le"
},
"product_reference": "cups-libs-32bit-2.1.3-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-32bit-2.1.3-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x"
},
"product_reference": "cups-libs-32bit-2.1.3-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-libs-32bit-2.1.3-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
},
"product_reference": "cups-libs-32bit-2.1.3-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-0163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0163"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted TIFF image, which is not properly handled by the (1) _cupsImageReadTIFF function in the imagetops filter and (2) imagetoraster filter, leading to a heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0163",
"url": "https://www.suse.com/security/cve/CVE-2009-0163"
},
{
"category": "external",
"summary": "SUSE Bug 485895 for CVE-2009-0163",
"url": "https://bugzilla.suse.com/485895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-0163"
},
{
"cve": "CVE-2009-2820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-2820"
}
],
"notes": [
{
"category": "general",
"text": "The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle (1) HTTP headers and (2) HTML templates, which allows remote attackers to conduct cross-site scripting (XSS) attacks and HTTP response splitting attacks via vectors related to (a) the product\u0027s web interface, (b) the configuration of the print system, and (c) the titles of printed jobs, as demonstrated by an XSS attack that uses the kerberos parameter to the admin program, and leverages attribute injection and HTTP Parameter Pollution (HPP) issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-2820",
"url": "https://www.suse.com/security/cve/CVE-2009-2820"
},
{
"category": "external",
"summary": "SUSE Bug 548317 for CVE-2009-2820",
"url": "https://bugzilla.suse.com/548317"
},
{
"category": "external",
"summary": "SUSE Bug 551563 for CVE-2009-2820",
"url": "https://bugzilla.suse.com/551563"
},
{
"category": "external",
"summary": "SUSE Bug 574336 for CVE-2009-2820",
"url": "https://bugzilla.suse.com/574336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-2820"
},
{
"cve": "CVE-2009-3553",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3553"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS 1.3.7 and 1.3.10 allows remote attackers to cause a denial of service (daemon crash or hang) via a client disconnection during listing of a large number of print jobs, related to improperly maintaining a reference count. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3553",
"url": "https://www.suse.com/security/cve/CVE-2009-3553"
},
{
"category": "external",
"summary": "SUSE Bug 554861 for CVE-2009-3553",
"url": "https://bugzilla.suse.com/554861"
},
{
"category": "external",
"summary": "SUSE Bug 574336 for CVE-2009-3553",
"url": "https://bugzilla.suse.com/574336"
},
{
"category": "external",
"summary": "SUSE Bug 578215 for CVE-2009-3553",
"url": "https://bugzilla.suse.com/578215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-3553"
},
{
"cve": "CVE-2010-0393",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0393"
}
],
"notes": [
{
"category": "general",
"text": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0393",
"url": "https://www.suse.com/security/cve/CVE-2010-0393"
},
{
"category": "external",
"summary": "SUSE Bug 574336 for CVE-2010-0393",
"url": "https://bugzilla.suse.com/574336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0393"
},
{
"cve": "CVE-2010-0540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0540"
}
],
"notes": [
{
"category": "general",
"text": "Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0540",
"url": "https://www.suse.com/security/cve/CVE-2010-0540"
},
{
"category": "external",
"summary": "SUSE Bug 601830 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/601830"
},
{
"category": "external",
"summary": "SUSE Bug 671735 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/671735"
},
{
"category": "external",
"summary": "SUSE Bug 680210 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/680210"
},
{
"category": "external",
"summary": "SUSE Bug 680212 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/680212"
},
{
"category": "external",
"summary": "SUSE Bug 700987 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/700987"
},
{
"category": "external",
"summary": "SUSE Bug 711490 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/711490"
},
{
"category": "external",
"summary": "SUSE Bug 715643 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/715643"
},
{
"category": "external",
"summary": "SUSE Bug 748422 for CVE-2010-0540",
"url": "https://bugzilla.suse.com/748422"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0540"
},
{
"cve": "CVE-2010-0542",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0542"
}
],
"notes": [
{
"category": "general",
"text": "The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service (NULL pointer dereference or heap memory corruption) or possibly execute arbitrary code via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0542",
"url": "https://www.suse.com/security/cve/CVE-2010-0542"
},
{
"category": "external",
"summary": "SUSE Bug 601352 for CVE-2010-0542",
"url": "https://bugzilla.suse.com/601352"
},
{
"category": "external",
"summary": "SUSE Bug 644521 for CVE-2010-0542",
"url": "https://bugzilla.suse.com/644521"
},
{
"category": "external",
"summary": "SUSE Bug 657780 for CVE-2010-0542",
"url": "https://bugzilla.suse.com/657780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0542"
},
{
"cve": "CVE-2010-1748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1748"
}
],
"notes": [
{
"category": "general",
"text": "The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly handle parameter values containing a % (percent) character without two subsequent hex characters, which allows context-dependent attackers to obtain sensitive information from cupsd process memory via a crafted request, as demonstrated by the (1) /admin?OP=redirect\u0026URL=% and (2) /admin?URL=/admin/\u0026OP=% URIs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1748",
"url": "https://www.suse.com/security/cve/CVE-2010-1748"
},
{
"category": "external",
"summary": "SUSE Bug 601352 for CVE-2010-1748",
"url": "https://bugzilla.suse.com/601352"
},
{
"category": "external",
"summary": "SUSE Bug 604271 for CVE-2010-1748",
"url": "https://bugzilla.suse.com/604271"
},
{
"category": "external",
"summary": "SUSE Bug 644521 for CVE-2010-1748",
"url": "https://bugzilla.suse.com/644521"
},
{
"category": "external",
"summary": "SUSE Bug 649256 for CVE-2010-1748",
"url": "https://bugzilla.suse.com/649256"
},
{
"category": "external",
"summary": "SUSE Bug 657780 for CVE-2010-1748",
"url": "https://bugzilla.suse.com/657780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1748"
},
{
"cve": "CVE-2010-2941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2941"
}
],
"notes": [
{
"category": "general",
"text": "ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2941",
"url": "https://www.suse.com/security/cve/CVE-2010-2941"
},
{
"category": "external",
"summary": "SUSE Bug 649256 for CVE-2010-2941",
"url": "https://bugzilla.suse.com/649256"
},
{
"category": "external",
"summary": "SUSE Bug 654627 for CVE-2010-2941",
"url": "https://bugzilla.suse.com/654627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2010-2941"
},
{
"cve": "CVE-2012-5519",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5519"
}
],
"notes": [
{
"category": "general",
"text": "CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5519",
"url": "https://www.suse.com/security/cve/CVE-2012-5519"
},
{
"category": "external",
"summary": "SUSE Bug 1180148 for CVE-2012-5519",
"url": "https://bugzilla.suse.com/1180148"
},
{
"category": "external",
"summary": "SUSE Bug 789566 for CVE-2012-5519",
"url": "https://bugzilla.suse.com/789566"
},
{
"category": "external",
"summary": "SUSE Bug 882905 for CVE-2012-5519",
"url": "https://bugzilla.suse.com/882905"
},
{
"category": "external",
"summary": "SUSE Bug 924208 for CVE-2012-5519",
"url": "https://bugzilla.suse.com/924208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2012-5519"
},
{
"cve": "CVE-2012-6094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-6094"
}
],
"notes": [
{
"category": "general",
"text": "cups (Common Unix Printing System) \u0027Listen localhost:631\u0027 option not honored correctly which could provide unauthorized access to the system",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-6094",
"url": "https://www.suse.com/security/cve/CVE-2012-6094"
},
{
"category": "external",
"summary": "SUSE Bug 795624 for CVE-2012-6094",
"url": "https://bugzilla.suse.com/795624"
},
{
"category": "external",
"summary": "SUSE Bug 857372 for CVE-2012-6094",
"url": "https://bugzilla.suse.com/857372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2012-6094"
},
{
"cve": "CVE-2014-2856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-2856"
}
],
"notes": [
{
"category": "general",
"text": "Cross-site scripting (XSS) vulnerability in scheduler/client.c in Common Unix Printing System (CUPS) before 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the URL path, related to the is_path_absolute function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-2856",
"url": "https://www.suse.com/security/cve/CVE-2014-2856"
},
{
"category": "external",
"summary": "SUSE Bug 873899 for CVE-2014-2856",
"url": "https://bugzilla.suse.com/873899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-2856"
},
{
"cve": "CVE-2014-3537",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3537"
}
],
"notes": [
{
"category": "general",
"text": "The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3537",
"url": "https://www.suse.com/security/cve/CVE-2014-3537"
},
{
"category": "external",
"summary": "SUSE Bug 887240 for CVE-2014-3537",
"url": "https://bugzilla.suse.com/887240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3537"
},
{
"cve": "CVE-2014-5029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5029"
}
],
"notes": [
{
"category": "general",
"text": "The web interface in CUPS 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/ and language[0] set to null. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3537.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5029",
"url": "https://www.suse.com/security/cve/CVE-2014-5029"
},
{
"category": "external",
"summary": "SUSE Bug 887240 for CVE-2014-5029",
"url": "https://bugzilla.suse.com/887240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-5029"
},
{
"cve": "CVE-2014-5030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5030"
}
],
"notes": [
{
"category": "general",
"text": "CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5030",
"url": "https://www.suse.com/security/cve/CVE-2014-5030"
},
{
"category": "external",
"summary": "SUSE Bug 887240 for CVE-2014-5030",
"url": "https://bugzilla.suse.com/887240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-5030"
},
{
"cve": "CVE-2014-5031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-5031"
}
],
"notes": [
{
"category": "general",
"text": "The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-5031",
"url": "https://www.suse.com/security/cve/CVE-2014-5031"
},
{
"category": "external",
"summary": "SUSE Bug 887240 for CVE-2014-5031",
"url": "https://bugzilla.suse.com/887240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-5031"
},
{
"cve": "CVE-2015-1158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1158"
}
],
"notes": [
{
"category": "general",
"text": "The add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted (1) IPP_CREATE_JOB or (2) IPP_PRINT_JOB request, as demonstrated by replacing the configuration file and consequently executing arbitrary code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1158",
"url": "https://www.suse.com/security/cve/CVE-2015-1158"
},
{
"category": "external",
"summary": "SUSE Bug 924208 for CVE-2015-1158",
"url": "https://bugzilla.suse.com/924208"
},
{
"category": "external",
"summary": "SUSE Bug 976653 for CVE-2015-1158",
"url": "https://bugzilla.suse.com/976653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-1158"
},
{
"cve": "CVE-2015-1159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1159"
}
],
"notes": [
{
"category": "general",
"text": "Cross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1159",
"url": "https://www.suse.com/security/cve/CVE-2015-1159"
},
{
"category": "external",
"summary": "SUSE Bug 924208 for CVE-2015-1159",
"url": "https://bugzilla.suse.com/924208"
},
{
"category": "external",
"summary": "SUSE Bug 976653 for CVE-2015-1159",
"url": "https://bugzilla.suse.com/976653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cups-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-client-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-ddk-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-devel-32bit-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-2.1.3-2.3.x86_64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.aarch64",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.ppc64le",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.s390x",
"openSUSE Tumbleweed:cups-libs-32bit-2.1.3-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-1159"
}
]
}
GHSA-6J26-QG9P-XQQM
Vulnerability from github – Published: 2022-05-02 06:12 – Updated: 2022-05-02 06:12
VLAI?
Details
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.
{
"affected": [],
"aliases": [
"CVE-2010-0393"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2010-03-05T19:30:00Z",
"severity": "MODERATE"
},
"details": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.",
"id": "GHSA-6j26-qg9p-xqqm",
"modified": "2022-05-02T06:12:23Z",
"published": "2022-05-02T06:12:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0393"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"type": "WEB",
"url": "http://support.apple.com/kb/HT4077"
},
{
"type": "WEB",
"url": "http://www.cups.org/str.php?L3482"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/38524"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-906-1"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2010-0393
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2010-0393",
"description": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.",
"id": "GSD-2010-0393",
"references": [
"https://www.suse.com/security/cve/CVE-2010-0393.html",
"https://www.debian.org/security/2010/dsa-2007"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2010-0393"
],
"details": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.",
"id": "GSD-2010-0393",
"modified": "2023-12-13T01:21:28.446654Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2010-0393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.cups.org/str.php?L3482",
"refsource": "MISC",
"url": "http://www.cups.org/str.php?L3482"
},
{
"name": "USN-906-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"name": "38524",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/38524"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "MDVSA-2010:072",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"name": "GLSA-201207-10",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"name": "MDVSA-2010:073",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=558460",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2010-0393"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "USN-906-1",
"refsource": "UBUNTU",
"tags": [],
"url": "http://www.ubuntu.com/usn/USN-906-1"
},
{
"name": "38524",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/38524"
},
{
"name": "http://www.cups.org/str.php?L3482",
"refsource": "MISC",
"tags": [],
"url": "http://www.cups.org/str.php?L3482"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=558460",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"tags": [],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"tags": [],
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "MDVSA-2010:072",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:072"
},
{
"name": "MDVSA-2010:073",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:073"
},
{
"name": "GLSA-201207-10",
"refsource": "GENTOO",
"tags": [],
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
}
},
"lastModifiedDate": "2013-05-15T03:06Z",
"publishedDate": "2010-03-05T19:30Z"
}
}
}
VAR-201003-1114
Vulnerability from variot - Updated: 2024-07-23 19:39The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers. CUPS (Common UNIX Printing System) is prone to a local security-weakness when loading localized message strings from arbitrary files. Exploiting this issue in conjunction with a local format-string issue may allow attackers to execute arbitrary code with superuser privileges, completely compromising affected computers. It is based on the Internet Printing Protocol and provides most PostScript and raster printer services. The lppasswd component of CUPS does not safely use the LOCALEDIR environment variable, which may lead to format string attacks. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Mandriva Linux Security Advisory MDVSA-2010:073-1 http://www.mandriva.com/security/
Package : cups Date : April 14, 2010 Affected: 2010.0
Problem Description:
Multiple vulnerabilities has been found and corrected in cups:
CUPS in does not properly handle (1) HTTP headers and (2) HTML templates, which allows remote attackers to conduct cross-site scripting (XSS) attacks and HTTP response splitting attacks via vectors related to (a) the product's web interface, (b) the configuration of the print system, and (c) the titles of printed jobs (CVE-2009-2820).
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS 1.3.7 and 1.3.10 allows remote attackers to cause a denial of service (daemon crash or hang) via a client disconnection during listing of a large number of print jobs, related to improperly maintaining a reference count. NOTE: some of these details are obtained from third party information (CVE-2009-3553).
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS 1.3.7, 1.3.9, 1.3.10, and 1.4.1, when kqueue or epoll is used, allows remote attackers to cause a denial of service (daemon crash or hang) via a client disconnection during listing of a large number of print jobs, related to improperly maintaining a reference count. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-3553 (CVE-2010-0302).
The updated packages have been patched to correct these issues.
Update:
Packages for Mandriva Linux 2010.0 was missing with MDVSA-2010:073. This advisory provides packages for 2010.0 as well.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2820 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0302 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0393
Updated Packages:
Mandriva Linux 2010.0: ba3d43f654fd15aea9f81eadb57c3022 2010.0/i586/cups-1.4.1-12.1mdv2010.0.i586.rpm b1f275796b029190380e40ae23ae8ed0 2010.0/i586/cups-common-1.4.1-12.1mdv2010.0.i586.rpm 296b30522aa7c008767c6b285aa4b715 2010.0/i586/cups-serial-1.4.1-12.1mdv2010.0.i586.rpm b3abb3c2299c1cb32848c0ee5954eed8 2010.0/i586/libcups2-1.4.1-12.1mdv2010.0.i586.rpm d91c255a1e42e5988f1d8d2d94ffd369 2010.0/i586/libcups2-devel-1.4.1-12.1mdv2010.0.i586.rpm ba336d918bbe9d03cf4fa823293bfb37 2010.0/i586/php-cups-1.4.1-12.1mdv2010.0.i586.rpm c3aee001d1629963053f475a49b7cd5d 2010.0/SRPMS/cups-1.4.1-12.1mdv2010.0.src.rpm
Mandriva Linux 2010.0/X86_64: 7c089025f467e5b366e57a15e85857ce 2010.0/x86_64/cups-1.4.1-12.1mdv2010.0.x86_64.rpm 0e0e4ad3a4d42022d22a88ee8568f8bf 2010.0/x86_64/cups-common-1.4.1-12.1mdv2010.0.x86_64.rpm cb7b4cadce5a174bbd4027f478b38c26 2010.0/x86_64/cups-serial-1.4.1-12.1mdv2010.0.x86_64.rpm 653bd25375281b919c6438e71052359d 2010.0/x86_64/lib64cups2-1.4.1-12.1mdv2010.0.x86_64.rpm 7bebd27fa6ce2aa5667d28fd7b06702e 2010.0/x86_64/lib64cups2-devel-1.4.1-12.1mdv2010.0.x86_64.rpm 34452fc88d7a16591eb653a32c6daa28 2010.0/x86_64/php-cups-1.4.1-12.1mdv2010.0.x86_64.rpm c3aee001d1629963053f475a49b7cd5d 2010.0/SRPMS/cups-1.4.1-12.1mdv2010.0.src.rpm
To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFLxclfmqjQ0CJFipgRAmhmAJ4qtZ7GxqbmNOSfJeozcsqRCBvAsACg2vG+ NRt/ytxq5LWHwOAGFnOKnIw= =ayqT -----END PGP SIGNATURE----- . ----------------------------------------------------------------------
Use WSUS to deploy 3rd party patches
Public BETA http://secunia.com/vulnerability_scanning/corporate/wsus_3rd_third_party_patching/
TITLE: CUPS "lppasswd" Privilege Escalation Vulnerability
SECUNIA ADVISORY ID: SA38789
VERIFY ADVISORY: http://secunia.com/advisories/38789/
DESCRIPTION: A vulnerability has been discovered in CUPS, which can be exploited by malicious, local users to gain escalated privileges.
The vulnerability is caused due to the "lppasswd" utility (which may be installed suid root) not properly verifying certain environment variables (e.g. "LOCALEDIR") before using them. This can be exploited to e.g. execute arbitrary code by tricking the utility into using a specially crafted localisation file containing malicious format strings.
The vulnerability is confirmed in version 1.3.11. Other versions may also be affected.
Note: The manual page for "lppasswd" in version 1.3.11 recommends administrators to change or disable the ownership of the file for security reasons. CUPS 1.4.0, 1.4.1, and 1.4.2 do not install the "lppasswd" utility as suid root by default.
SOLUTION: Restrict access to trusted users only. Remove the suid-bit from the "lppasswd" utility.
PROVIDED AND/OR DISCOVERED BY: Ubuntu credits Ronald Volgers.
CHANGELOG: 2010-03-04: Increased "criticality".
ORIGINAL ADVISORY: CUPS: http://www.cups.org/str.php?L3482
Red Hat bug #558460: https://bugzilla.redhat.com/show_bug.cgi?id=558460
USN-906-1: https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-March/001054.html
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
. This works as the lppasswd binary happens to be installed with setuid 0 permissions.
For the stable distribution (lenny), this problem has been fixed in version 1.3.8-1+lenny8.
For the testing distribution (squeeze) this problem will be fixed soon.
For the unstable distribution (sid) this problem has been fixed in version 1.4.2-9.1.
We recommend that you upgrade your cups packages.
Upgrade instructions
wget url will fetch the file for you dpkg -i file.deb will install the referenced file.
If you are using the apt-get package manager, use the line for sources.list as given below:
apt-get update will update the internal database apt-get upgrade will install corrected packages
You may use an automated update by adding the resources from the footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
Debian (stable)
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.dsc Size/MD5 checksum: 1837 a511bb4de5c768a4862a55d227a4ff70 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.diff.gz Size/MD5 checksum: 189649 82c747daa3ed7bb71e10094a50a0cabd http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8.orig.tar.gz Size/MD5 checksum: 4796827 10efe9825c1a1dcd325be47a6cc21faf
Architecture independent packages:
http://security.debian.org/pool/updates/main/c/cups/cups-common_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 1181030 11167383d8fa0f8518cb550e4946c109 http://security.debian.org/pool/updates/main/c/cups/cupsys-common_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52398 15e639e1ac4d44042e5e5245d0670cb9 http://security.debian.org/pool/updates/main/c/cups/cupsys-bsd_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52398 796f92741e989eac9ba214ede18630d8 http://security.debian.org/pool/updates/main/c/cups/libcupsys2-dev_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52406 2bce3838eaf23010ab40842e6cd15b64 http://security.debian.org/pool/updates/main/c/cups/cupsys-dbg_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52398 57ee5c01a3a6b88e9dd73a5fae4052e6 http://security.debian.org/pool/updates/main/c/cups/libcupsys2_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52398 a57e7e5775ef54f3b173aa78cb56925c http://security.debian.org/pool/updates/main/c/cups/cupsys-client_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52402 e558bca7e419849e9985fab5b253d541 http://security.debian.org/pool/updates/main/c/cups/cupsys_1.3.8-1+lenny8_all.deb Size/MD5 checksum: 52382 6fb5db2ff939a66c82805069e2673122
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 445498 e4c86a6a0e2956a543432ea47d2b4e4d http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 119902 54fbde6934338f62546a3a9d63366e24 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 108236 b5585a98bb2ba4395aa8b995663eb449 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 39296 ba38fb23064f0265b08e634c5553680c http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 81528 586baf5c22624b387b17522f9336a62f http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 178786 855af4932cc8c4d8fa79615cfb9268d7 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 1149260 0655f89a290365b71040ad2ab6d5708e http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_alpha.deb Size/MD5 checksum: 2103240 eb83ee8de10a7bd58918742bd92afb26
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 2072340 d50623c5ddf4a13d88ad72c77b423b7f http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 99958 c80b2253f2bd929eea5fa3e4d630007b http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 1195800 c8fe761855122b595442161dc215685f http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 61016 bd0dbe1b2ea8cd4f4608684c8d175aeb http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 169070 a8cc5fcba2086f06cb475b363dae39d1 http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 401586 d0c2f361b90a7d43a29c1267e41ac013 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 116782 535933bcbdf17abc8d11d66d6059f398 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_amd64.deb Size/MD5 checksum: 37256 c48a07f0d0dd59aec4bc88238fe51ea6
arm architecture (ARM)
http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 1125054 47b869c7af5c841936301dc713aa3bb3 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 2061240 f8f6aec89d4122cd7c0c5f1c80185490 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 113164 862335112c4cec83b6f774a39e3fc2b9 http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 155534 3aa347eb9e30df946b834ac016f8d283 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 55352 0b8cd0cfc9373f4ab4be9a068868818d http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 36474 9925987df33366768ee7ccfa4566e1d4 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 97414 d43e5b18042c48ebc6d2a1d4e6c12f2c http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_arm.deb Size/MD5 checksum: 387712 33ece2737438d084d26ac6fc5cd760b9
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 157028 3e4149d7b7e7e845bc4d3730404190f3 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 119310 100d72c77beb954a87986af1ecd647c7 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 54732 1190d22789b9309f1e78860510301ab3 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 2077838 4a8ff6e73ea9bf9e94ff5825c1174779 http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 387602 45a8362c0dc84b4a4c8fdd2e33f80bbc http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 98558 c8b588b3ab696cb2e88baf2f5d94741f http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 38772 8aacdda63b2ee8cb8a63421931942814 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_armel.deb Size/MD5 checksum: 1129310 149f6fec84d67a60b62477c37e39d042
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 406772 d1d53dd5d0f75b59024ad7956564f29f http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 39988 5a975486c7cb9f472ee0d45ffd9b3683 http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 172874 4186b6262c3e279a9cc8b77d029e4c1e http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 63140 9039a2811fb6d3945034e4cbf7ffe599 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 1142920 bc221c80a35f48369d4ecf5db639ab96 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 2120838 18e3dc2e1e7b4f0446422395c19ffa58 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 121720 fa37b7429bf9485808067fd67b05da59 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_hppa.deb Size/MD5 checksum: 103158 59ff4ef65704e82c04629a8744c0f8bc
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 1097596 fd5c74be5bc03649abba8ebbf77d6451 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 38010 5d2bd65adba678c033e7ca5a29a9d955 http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 165576 71ce31f39a6e1e720af95d4e82a88d8b http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 60424 0e4cea9daca41e520dbce560b4832d48 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 99486 87819be26173976d930461a6577070a5 http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 394172 e63cbc2f88f30d3f1b66d1b55c1d169c http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 2052542 9454ca978cc4a28481c11a5cdbd33438 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_i386.deb Size/MD5 checksum: 115942 1f751d318fb9fef7c91b0a9c0c409f9e
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 139102 78b2ab586f3187909d930abd87c3ec84 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 86012 99a615920328daa054cfe62052a93cb7 http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 209294 b01ae496c3cb881f4decc3a4ece08122 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 2283850 175a894311f8cff9fe650c3baa0b6d46 http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 447802 38383f1f2be111677a79ebfcd247d61d http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 123628 11e9d5f4b78ff50d121d14fdbe6a782b http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 1151580 af7b35bcac465ca8cbabb63651cc2cb2 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_ia64.deb Size/MD5 checksum: 41284 57e9177cef831639476cc289d8067834
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 65220 f432b20c68866e83e696aaafeca0ea32 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 1158992 129547967aab4dc3a95e89b497828069 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 99032 f563929513a294d97793f5aba3f0cf15 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 110006 7df897c72bb496c1660022be4eb53b4c http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 403444 5835503a1026ba846954976d3e52cebc http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 36158 ebdbbdc958b51e851600d688738c8089 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 2030710 6aed4a117ee98cfd751204c957ba7c1d http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_mipsel.deb Size/MD5 checksum: 158496 987c55cca3677a14b836597dbb1f0327
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 105640 ae6a5f63f589ad5bae2d7ecd4be269e1 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 61094 9d02e8bef845830b2b1e0e920eb0ada0 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 135688 6ec7ee1ad2eb2f543d2eff4dea847a41 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 43906 8e2a1126f6e4cca776ca13cf7e49625b http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 174512 52a39e14eda691e3563c3278fcfa25ff http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 395666 9eca6ef2e6429b4ac2226847c8122758 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 2137268 b6cacb0e0051f563ac0a027d3dac8ce0 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_powerpc.deb Size/MD5 checksum: 1196662 875cce4fd93adff28ef3f696696ac363
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 118590 3cf70157d2a0f74c419c945a9ec65785 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 60714 d1a71e6365fb95c20bb9d720b3a5ab32 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 101722 71e9684bab935487bc3ff48c69de5ba7 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 37818 bf29d032e9a00e33b62fafda191ceceb http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 2093186 3588fb878456ae05781d5467d5a245b3 http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 399922 d481af6ea365c4ad436493ce8adb92d7 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 1190826 185c58c1bc4b622fca84715f749eb9bd http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_s390.deb Size/MD5 checksum: 171864 7731f029fa9c052a7ccbefd457a36ede
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 395004 782356afcc6dc3f4f9c96cd498a2baf3 http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 2071128 d75e27ad18dc7e655aab7be4e6d4be19 http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 1057940 2b5f7135c895f38353916b4e7bcaec83 http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 116708 2f59a6913340ba69f12bc7d36b354584 http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 161096 ee6815c329c6c619fcbb9fbb45048895 http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 38870 016788da55547b0ea7cb51870249fb35 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 97330 1f6d5116c20a0cb54a41c3bb34a3cc92 http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_sparc.deb Size/MD5 checksum: 57662 1080e4dbc4db2d41e67e15061246bb42
These files will probably be moved into the stable distribution on its next update.
For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkuO3scACgkQHYflSXNkfP9xngCgr1BLG5dUngbgdET9DXmvo/zA cX0AoLLmmJ9/MliGiKRCRv2UKj4WiM3k =awyu -----END PGP SIGNATURE----- . =========================================================== Ubuntu Security Notice USN-906-1 March 03, 2010 cups, cupsys vulnerabilities CVE-2009-3553, CVE-2010-0302, CVE-2010-0393 ===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 Ubuntu 9.10
This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.
The problem can be corrected by upgrading your system to the following package versions:
Ubuntu 6.06 LTS: cupsys 1.2.2-0ubuntu0.6.06.17 cupsys-client 1.2.2-0ubuntu0.6.06.17
Ubuntu 8.04 LTS: cupsys 1.3.7-1ubuntu3.8 cupsys-client 1.3.7-1ubuntu3.8
Ubuntu 8.10: cups 1.3.9-2ubuntu9.5 cups-client 1.3.9-2ubuntu9.5
Ubuntu 9.04: cups 1.3.9-17ubuntu3.6 cups-client 1.3.9-17ubuntu3.6
Ubuntu 9.10: cups 1.4.1-5ubuntu2.4 cups-client 1.4.1-5ubuntu2.4
In general, a standard system upgrade is sufficient to effect the necessary changes.
Details follow:
It was discovered that the CUPS scheduler did not properly handle certain network operations. A local attacker could exploit this with a format-string vulnerability leading to a root privilege escalation. The default compiler options for Ubuntu 8.10, 9.04 and 9.10 should reduce this vulnerability to a denial of service. (CVE-2010-0393)
Updated packages for Ubuntu 6.06 LTS:
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.diff.gz
Size/MD5: 106482 26e1af0359723f0fe887019ea8973a7e
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.dsc
Size/MD5: 1061 400968d3ecf83db01f0a427f10f2998e
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2.orig.tar.gz
Size/MD5: 4070384 2c99b8aa4c8dc25c8a84f9c06aa52e3e
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.2.2-0ubuntu0.6.06.17_all.deb
Size/MD5: 998 776cbf76de0fa4da83fa66cac2a2ee9c
amd64 architecture (Athlon64, Opteron, EM64T Xeon):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 36220 1a0b165edf4aaff4b063ef5ffb44aec3
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 81834 6fc3613d660d8193ef5bc8820a7241d9
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 2289018 87d64d2f3a97289ad6b6db57d090ca2d
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 6090 85aeada029ad3c01ff7f1e18f9ea9cc2
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 77908 96e28918fdf830eb12336aadedf9f281
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 25740 85b73ffa3c93b1cca0f9421fdaa01cc3
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_amd64.deb
Size/MD5: 130734 938995599b4be32a725528c80981fa78
i386 architecture (x86 compatible Intel/AMD):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 34766 47d4bdcf450f6d8d30206c35192f1b7d
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 77930 e830a9300772160fb0a6748da948f246
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 2256104 bcfa53bda3ed0c1e50636e804af11055
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 6094 34a470a2aaff3e3ab10eea29a1bd8200
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 77022 ab3b5c283d4ec643297685c034f1073c
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 25748 d5904841e833850731621090c1b88c8c
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_i386.deb
Size/MD5: 122908 eb39cde640458c67403c00cfd65ea312
powerpc architecture (Apple Macintosh G3/G4/G5):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 40474 a47c9a5aad3feee3c9218d32e3f03f85
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 89482 81e3f9ad6e8fe3cb3096b133bfb4fb5b
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 2303712 fffb516669489cf38ce5f410b58112af
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 6092 8c6d3af926e6729378b1ba23508e3c6b
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 79548 169e4c3351cf2ef0c99e478d8e2a3a46
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 25740 f0d21ba1ea537495d3953a22999d1dd4
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_powerpc.deb
Size/MD5: 128662 98b0c1483cc7021fff335da8d79c67c2
sparc architecture (Sun SPARC/UltraSPARC):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 35388 1128a347e119ca9525784ed50da5d0ab
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 78684 596751675fee6063e59dab02e7b44543
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 2289934 9bd77e6533b77678840172bcf285c157
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 6096 a11d49069913645b3a947d2dfa6f5f84
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 76832 c1049c92d30205b8032648dfbd90299c
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 25744 d2d1088e3744d305b6c90aca7eda4be0
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_sparc.deb
Size/MD5: 124486 60a22b1cccb08eaab9847b9e87c59032
Updated packages for Ubuntu 8.04 LTS:
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.diff.gz
Size/MD5: 141577 5cb2a7055c83f2535e6704212c06ea0c
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.dsc
Size/MD5: 1442 d42e1f9c2424210f66acfaeb4ecf293a
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7.orig.tar.gz
Size/MD5: 4700333 383e556d9841475847da6076c88da467
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-common_1.3.7-1ubuntu3.8_all.deb
Size/MD5: 1144392 72c2295be929ac91622921b866586810
amd64 architecture (Athlon64, Opteron, EM64T Xeon):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 37522 606cf4d3db841e5c7699af8e6063d28a
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 90020 5494f76c3c0aff50e61b0e7065d4fc45
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 1882420 fbf517a3c599b99d5ea8936c09f4a6d6
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 60800 2b3dd2ab96e425ab134602608f0d3530
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 50216 27fb4f492cc7bf62c01a275741d37011
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 345048 0525be5bc4dd045cd78a1b284f98398a
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_amd64.deb
Size/MD5: 178536 a044522e561b9b3be73617a175cc399d
i386 architecture (x86 compatible Intel/AMD):
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 36956 0507d5e834e622f33412109dcb260037
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 88530 244e700f4596074b37c4b7acb984dacc
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 1864902 b6f438dea33b89a9f268d732d670faf1
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 60090 e83c89c8fe55e2f2e79d424e4231f8a1
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 49862 97abed0edb9dfbd42e8ba975c424e6d8
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 339414 1e4250fd6c379296cfba76f67ab97465
http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_i386.deb
Size/MD5: 175410 efdf295f468c419fd957e69f98fd715a
lpia architecture (Low Power Intel Architecture):
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 36660 58ce4787d4d5b43fdc762f21f06bb6bf
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 88834 ea87ff5e386e37ddcd2a3678e85764e5
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 1867016 ba1534fcc9263b70868c4ed449529e25
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 60492 e06a5a3660f9967ec6e0040a486d7362
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 50808 ca0c034e3beff76b902c6471afbd7268
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 337072 bfaa21b082ce3052922a179d522213d4
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_lpia.deb
Size/MD5: 174440 8e2dd41e1e07942ee0f53e05c608206a
powerpc architecture (Apple Macintosh G3/G4/G5):
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 46932 a5d83468e8e0269a483c914230768ea3
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 110654 ec3d80099ccbaeb3f0929644f45bbd75
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 1951280 f475ae7f5ae8ad00bc1ebd7c4634c3ae
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 59922 cb7e8e802dfbe515260578f585ee4427
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 54924 234a155df73c7ef047ac3c5c8b2e132a
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 341760 1ada03ee442854916b34f267b1301407
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_powerpc.deb
Size/MD5: 184292 e080a077141436e9837682cf5c6e56e1
sparc architecture (Sun SPARC/UltraSPARC):
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 38038 15aef403a65149edb1b6e3c87bbcf1e3
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 91026 a4ade2e1d03f94b36122a5788f37cc97
http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 1899806 de0f0a1899697c7add1960031257c51e
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 57822 c2af4acac6a11e98f72703a25b2ebdfc
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 48224 cf486639b2c6b6247afe109eb73e30d7
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 341494 8c21fd99687d9fd49fa97e6c4638338e
http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_sparc.deb
Size/MD5: 174130 9c878b37d2afd35ee0b50c077490112e
Updated packages for Ubuntu 8.10:
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.diff.gz
Size/MD5: 331097 6adf07d4858d39e6047a97c0a312901e
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.dsc
Size/MD5: 2044 d77dce1f6e35cabbd18e84a7c7031b0d
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9.orig.tar.gz
Size/MD5: 4809771 e6f2d90491ed050e5ff2104b617b88ea
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 1163190 5c0dee3c7fd7541494ff7dc348be8728
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-bsd_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58560 74c932189d98c843872876adc83c989e
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-client_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58568 0666bac83bfb1edcc37931ad25588204
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58562 f524010f0aea453b001b084250bb7063
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58552 a55ec8b8772c680a7413afb1b069ee3e
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58574 420d72079939829054f9bb7978375ecd
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 4536 660fc4e6b26c050504a674aec5e0b8cd
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-2ubuntu9.5_all.deb
Size/MD5: 58560 919055c4a196d7cfa5e93a3e73de24f9
amd64 architecture (Athlon64, Opteron, EM64T Xeon):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 37296 0640e7fff6aa2dbbc93a839f641e1da0
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 119772 fc950280a6a56b99486a29868c65bf9a
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 1688940 84c0da9c505411cd3cbee063687215fa
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 2174144 1bff27592c202999f0fd2705eeb8282e
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 352308 bcdc4e90a86a22e503cf20e492f57e0f
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 173636 d477c60212f8098b6e92c2b5ec0b7ee2
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 61320 35baa0391a49f0490f49a97d5c8d57d4
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_amd64.deb
Size/MD5: 52322 d0caa49b4da1ea3ce447d2fa161d7394
i386 architecture (x86 compatible Intel/AMD):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 36226 1374ff5d461c4aafe2b57822f45c11c6
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 115316 0a8d0a452e3cd7d37eb72a9b4bacd8c8
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 1549000 468b48af21f437e2942d4b447d18d9ef
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 2141316 d117bac8e26451e37827a62749d39b4d
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 346096 26576542e0a94b17da8ddd971fbffa90
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 170556 7739c110695754553926fad31463187f
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 60538 5c5832067d06795cbab9e65a885ba240
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_i386.deb
Size/MD5: 51720 e7d90e5e4eac150dfd205ac17b686cc8
lpia architecture (Low Power Intel Architecture):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 36028 5bfdf3e87b3764eb20c0093fb1de1d3e
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 114504 a4f3e28e6eb86599111687a0f7235c45
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 1577892 6c0014be2e9e878679480239a494e917
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 2138164 0a4c78f2bda571599ecffc75dade8006
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 343092 df67f3a082314f41e14cdf97c35c4668
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 168874 dcdab1a3f91f1f2a91a20d01873545ba
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 60626 27c5b3fec56fcb1d7215fd35dfa31ec1
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_lpia.deb
Size/MD5: 52394 5644013cd3dec455b6b6d88b4306d67d
powerpc architecture (Apple Macintosh G3/G4/G5):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 43566 986c0bd78d2fc4fb5ae76598b24b1a41
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 138118 cc8ece0b9d10792ead1b7902924a6a81
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 1669132 eefc44a29391bb799adc54b6cb412cf3
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 2266096 b798bac78d4f645b90683b3a7901ff4d
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 348056 e9100409aabe02a51ea9fd6c315ab5b6
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 177934 9d812213782055304cc92b4b3ca69894
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 61266 7287aa743d0135c2d16bf29acf9cf915
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_powerpc.deb
Size/MD5: 57452 b132aaccd9bcf40dc9ae38783f69c6a6
sparc architecture (Sun SPARC/UltraSPARC):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 37220 5399de66103270899259960bb9d61345
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 117550 80acdf6867e804b3aa00055737534b57
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 1496764 e434ccdce381acf459b8d387881057d9
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 2202892 bbe3b1587f55b0bd868ce5e6fd4a38e9
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 344914 8a6824c84362ffbf4f9846a65045354a
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 166792 2be506fc868b369e46cf9f9d5fe83e69
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 57854 aef2dd0a14d3a8f01142d78e40ddcb67
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_sparc.deb
Size/MD5: 49804 8d12ec1a43df8c8c40f88082139d2785
Updated packages for Ubuntu 9.04:
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.diff.gz
Size/MD5: 335789 4f5f61340c4875048c60d69f82dec645
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.dsc
Size/MD5: 1995 e338a99e7a2e02a57415885e285f3bb1
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9.orig.tar.gz
Size/MD5: 4809771 e6f2d90491ed050e5ff2104b617b88ea
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 1165632 9b0854975cf994bd9233d6469e777e01
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60870 0e74155e761a4d852866bfdac0fb18fb
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60876 ad4e2582235225612d6c14e65dbcba3d
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60868 636f7492dabc042d1bc7e11864b38df1
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60872 47806c56c4700090e125496e23d8529c
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 4516 0e4d49c326db4af8add9edd88b561ad9
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60856 09bb0b47cf251fde476503402b0d0518
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-17ubuntu3.6_all.deb
Size/MD5: 60866 02b07214f91997c6b4f5d017aff0655e
amd64 architecture (Athlon64, Opteron, EM64T Xeon):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 37294 f14e9d6deb8a90dc55ba033dd6932f29
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 119756 b6d1f12fdca56879c84d177280535945
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 1664430 e0829de2955259a1169ca120f0a0a674
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 2170170 47904ff162f68734105645d802262448
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 352252 cff0030f199a0c96accc192e4168339c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 177900 da8f57dc1c56c823d459c12b98e64d2a
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 61264 5deccf4e07529b9e4676a83a556cebde
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_amd64.deb
Size/MD5: 52226 306d5a5075974aa902c7e10066420efa
i386 architecture (x86 compatible Intel/AMD):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 36230 5d95974ec58afa8d26b10d7b9c46a66b
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 115278 9011610cdad6d618456f508e3fe02107
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 1523946 660619a4cbb8df04bd81354ab6059f6c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 2136486 7f7dea27d4901a02daf9497bd242e2d9
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 346068 67c31d2afa56164900bb916480386b79
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 174416 c84631d45fd35facbf136270470844d4
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 60498 31d407917c749a659835e23c99eef0bb
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_i386.deb
Size/MD5: 51542 5026ab999fb97ac800bd185af3a8cff1
lpia architecture (Low Power Intel Architecture):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 36022 952070683ed6130fbc8e5531e2142063
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 114500 977d5c00dc13327bc0c9bce453473388
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 1552094 4fecfb548b223615fc7ce88f8fb94264
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 2134028 8dad89838f050c4a375c01ab4b3b2559
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 343052 0139347ae444d4d9f0b9b1420ebfc04f
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 172714 406bb68cba379412650849ea003eb537
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 60668 0a2993f0ac79fc4a91648991be1b0976
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_lpia.deb
Size/MD5: 52342 a501ebcafdf48300f5326632ce1b08b6
powerpc architecture (Apple Macintosh G3/G4/G5):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 43574 ae6a41699272fc0b360ba6555fd4e7ef
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 138086 95d5d1551240a86de61f4472f8433d01
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 1640174 24942cd5b3e82cb8f700880ace4cb40b
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 2257684 78ff8dc9f337c46ade897f22092939af
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 347984 9663f15cddd48aaa7d389ce1244aebc1
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 183308 1d188a3ea31eaba68b620b8fece8fcd8
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 61306 56306bfa507550c07d02b820380e19c3
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_powerpc.deb
Size/MD5: 57406 be85c41fd62fcaf3a28107a1614146d4
sparc architecture (Sun SPARC/UltraSPARC):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 37218 adeb034eaeadb51fd3723f382cab7b7c
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 117506 7a8039312accd4ce6be1596403616744
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 1468404 c3f80af2a2fc00c590562ea19e6fe9f2
http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 2203876 b75a1f2918317d00cc1540014c42e8d0
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 344838 5976a1b94be50118b6ddcdc4b40de073
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 170236 262941bf660cc95765b72cf5aa13e14d
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 57860 36426cde9ee4e2e2dc813ba4d0e98f19
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_sparc.deb
Size/MD5: 49702 590f4b45bf412b2f59d9ad4ea395754c
Updated packages for Ubuntu 9.10:
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.diff.gz
Size/MD5: 414730 d1a0c764ccf1fedd4c3427c45d19a9ca
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.dsc
Size/MD5: 2273 4a8ceed09060814e0cf5070412e06aae
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1.orig.tar.gz
Size/MD5: 5287327 4dc8f431ef50752dfd61d9d4959abd06
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 1419910 5ccad7198ba64c4d2e487109d38baf6c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 69572 33961e905c819b2d67c641fa0226596f
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsddk_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 69534 04b34f17b2f23a24254d74d266121b10
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 69562 f624d2fcb8549771cd920148ba2ace45
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 69574 e0b8e717d5bd0740c7af047debb050f7
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 4548 45c04ec4b5ef40e7b5a05b97cfff0821
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.4.1-5ubuntu2.4_all.deb
Size/MD5: 69554 10ac2f07563d4eb693e27195b7778935
amd64 architecture (Athlon64, Opteron, EM64T Xeon):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 36708 60bcfe9509bf6c460a24b32f3dc22f3a
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 120258 31f336e66b77fdb68624eee6c3f6aa86
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 89636 f2300503230b0418b939bbf0acbddd50
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 1909456 70052df26d278ec8fbcb89e92801f59c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 210406 50cf5e47fc69aa59dafcc51fd1ba7aca
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 218936 7f04aa35b965955b0c12566d18dd27bc
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 101856 80b6e20deaa9ec8006b6233daea025c4
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 31586 cac166753bfc5dad29293f69669402fe
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 90190 bdf93f96a315ba2313eb0bc86a24fa2b
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 22192 be5b0eba29c355d76aa86db66b328b8c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 61528 bcfe65ac2cd9cfab070635f5ede4482b
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 53160 a3cff812c204698c97027c47a2a8032d
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 81196 7fdf8a14125aed96ba11cfad2df8450b
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 15492 406aa3da43f5949e6d062bf117a8656c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 143032 c29bf3ee9e457b0096ada17948d85afb
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 60098 1cd00de7321f747b33a82c06bec69625
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_amd64.deb
Size/MD5: 34526 8a2d07f4f318a7fb578aef25a1fa106b
i386 architecture (x86 compatible Intel/AMD):
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 35470 59752d8fe6b0ab6b4be4bc9553dd67fe
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 115326 24a5ebd4c6b0c9932ec34481bdfc27fd
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 88804 71f3cbd750cb6283dc29cdea5e7b8dd3
http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 1867476 93037d1769ff83d77a6da5ed93e82058
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 199428 dc33c5038d26a0b76f1b694598c004a0
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 213030 031bc59c14807b8d6c7347c2a3ba2e8c
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 101048 e751022124d2496ac051280b70e75d88
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 31376 133412f956a2808d74ae62bc73ca6c48
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 90402 4c375adba3718768e98346d10ecfc2ed
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 22060 6969c7f346d155095980d127763e205a
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 60314 6d620c4a4380d7e65c2dcf147c7df896
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 52412 6641e47022e889de1525eaf5c5305eca
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 81106 7e3b8f7ddec3a8a5b8377b0234270268
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 15206 fd9858648c9df78fae4a974955c0e475
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 141568 1db2ce91ffedfa1bbde68b2756cfe389
http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 61438 1299d9de795e485872507e21e42b20e5
http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_i386.deb
Size/MD5: 32824 a7d8171d0f2888bb97f59387b5953db2
lpia architecture (Low Power Intel Architecture):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 35442 dd26d3e196a3bc1880331dc3821cdbab
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 115178 76977be3cbcb0d5f4a22ada4071188e4
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 88774 6516931d5dce31c51b80f107a6c78f29
http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 1865004 e482b421a57cc75b18d979de2e82fb7a
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 196772 061c86b147f9fdb980e7d40d8e84dabd
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 211440 13a330ef0e77a7f20f0e803140148905
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 100448 17f556fffdb82e83559268361e0eb53f
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 31206 27d0d62e0c989545ed7455f832eb2b25
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 89820 86176d7a6557617ff30aa83bcc875196
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 21778 e04668e8936e1d32e7e33414e570fcee
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 59950 9569de467d24173a0c35b838fea647fc
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 52576 582213e9cde03104f3c1795d06984197
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 81056 c1a6cca183116319ed1a095806cf1c8c
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 15304 21d41f59b097afbd27a12f7c9e877b32
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 141898 15553deba7c1e9c98136330e97b59119
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 62662 ecc362e334c91a0530c356b17e6a2641
http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_lpia.deb
Size/MD5: 33264 325a9170ecf6cd1dc9f955be9bbc1d24
powerpc architecture (Apple Macintosh G3/G4/G5):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 37006 3acbe062b83fdc269964eef5675a89c5
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 121650 74995951c11f700b551f6c8ce2badb23
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 89384 8f0ce2467cda194e493e87369aab765d
http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 1930866 ef1a8fd29f47f928b81c785730ce89d9
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 203588 decd7de1cafe69b61d713988fe55af37
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 223504 f60c1ea0858fd39961852c870c7fce49
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 101020 c0ad517da1a8bc09ccf97903a3ded8c9
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 33348 2424426af873cd4207b8226ebb8490c5
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 89594 9e6125fb851403ef7e80f09840eaa89a
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 22324 a4b8cbb7319e42721479d3092ef23f16
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 60618 01ffa1358e2fb0c5dd307cd8d135c14f
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 55376 fa276276aa683c19b9fc10bf65372347
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 81558 c9060c3ec4eca6ae2ce532f44298e556
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 15790 c857b043bf0bb4ff3dfc0db38de89f99
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 141118 92099a9250e369378fe8287e556b21a7
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 64954 b7da8579507c4db05cc78df34d289f76
http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_powerpc.deb
Size/MD5: 34790 964c7ecb9faa3a0b1a115a2a06a66e75
sparc architecture (Sun SPARC/UltraSPARC):
http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 36068 7ab9b44191ad5078c5f63a521744ca23
http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 117816 2be453254c5f80dc1c353acc62a3c443
http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 89232 09f73b5d95d3248b5ecc0393036ddbff
http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 1954238 7f4762af124ba5e650569b6fa2fbb5c7
http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 201516 730d6a0e1428a7165e01a565cc810d8a
http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 210594 4f16bfe7a76a1c9cb137401290c4f5c1
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 102698 fe023955fc4e93236d2ff46b685bc32b
http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 31560 4be671eb7500d06a1f949df0d92086e7
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 89804 3e5dbcf536bc2be0435561b4997c796e
http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 21380 fce9fff2a5bc990ae97cd67569805789
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 58150 e5a43b39220105101c69480fa63075f5
http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 50290 1cf2e270243b8f0a6cc56405a8c5bd94
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 80330 fd1073834591fd282edc82e516d7e533
http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 14380 e00615f5e33b445f214fd1205b1948cb
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 144322 85692c2dcfd49bb0c0e0aad28ccb670c
http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 61450 c809cd1adf184af7e35e60fa9c9c55e3
http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_sparc.deb
Size/MD5: 33858 2bddab9378a2a4e3938ce6ed39dc807e
.
Affected packages
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-print/cups < 1.4.8-r1 >= 1.4.8-r1
Description
Multiple vulnerabilities have been discovered in CUPS. Please review the CVE identifiers referenced below for details.
Impact
A remote attacker may be able to execute arbitrary code using specially crafted streams, IPP requests or files, or cause a Denial of Service (daemon crash or hang). A local attacker may be able to gain escalated privileges or overwrite arbitrary files. Furthermore, a remote attacker may be able to obtain sensitive information from the CUPS process or hijack a CUPS administrator authentication request.
Workaround
There is no known workaround at this time.
Resolution
All CUPS users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-print/cups-1.4.8-r1"
NOTE: This is a legacy GLSA. Updates for all affected architectures are available since September 03, 2011. It is likely that your system is already no longer affected by this issue.
References
[ 1 ] CVE-2009-3553 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3553 [ 2 ] CVE-2010-0302 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0302 [ 3 ] CVE-2010-0393 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0393 [ 4 ] CVE-2010-0540 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0540 [ 5 ] CVE-2010-0542 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0542 [ 6 ] CVE-2010-1748 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1748 [ 7 ] CVE-2010-2431 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2431 [ 8 ] CVE-2010-2432 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2432 [ 9 ] CVE-2010-2941 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2941 [ 10 ] CVE-2011-3170 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3170
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-201207-10.xml
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201003-1114",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "cups",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "1.4.1"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "1.3.7"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "1.2.2"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "1.3.9"
},
{
"model": "cups",
"scope": "eq",
"trust": 0.8,
"vendor": "cups",
"version": "1.2.2"
},
{
"model": "cups",
"scope": "eq",
"trust": 0.8,
"vendor": "cups",
"version": "1.3.7"
},
{
"model": "cups",
"scope": "eq",
"trust": 0.8,
"vendor": "cups",
"version": "1.3.9"
},
{
"model": "cups",
"scope": "eq",
"trust": 0.8,
"vendor": "cups",
"version": "1.4.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.5.8"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.6 to v10.6.2"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.5.8"
},
{
"model": "mac os x server",
"scope": "eq",
"trust": 0.8,
"vendor": "apple",
"version": "v10.6 to v10.6.2"
},
{
"model": "turbolinux appliance server",
"scope": "eq",
"trust": 0.8,
"vendor": "turbo linux",
"version": "3.0"
},
{
"model": "turbolinux appliance server",
"scope": "eq",
"trust": 0.8,
"vendor": "turbo linux",
"version": "3.0 (x64)"
},
{
"model": "turbolinux client",
"scope": "eq",
"trust": 0.8,
"vendor": "turbo linux",
"version": "2008"
},
{
"model": "turbolinux server",
"scope": "eq",
"trust": 0.8,
"vendor": "turbo linux",
"version": "11"
},
{
"model": "turbolinux server",
"scope": "eq",
"trust": 0.8,
"vendor": "turbo linux",
"version": "11 (x64)"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.10"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.10"
},
{
"model": "linux lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.10"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.10"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.10"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.04"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.04"
},
{
"model": "linux lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.04"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.04"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "9.04"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.10"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.10"
},
{
"model": "linux lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.10"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.10"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.10"
},
{
"model": "linux lts sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "linux lts powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "linux lts lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "linux lts sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "6.06"
},
{
"model": "linux lts powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "6.06"
},
{
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "6.06"
},
{
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "6.06"
},
{
"model": "linux enterprise",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"model": "moblin",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "2.1"
},
{
"model": "moblin",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "2.0"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "11.2"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "11.1"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "11.0"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "pardus",
"version": "20090"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "pardus",
"version": "20080"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.0"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.0"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.1"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.1"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.0"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.0"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2008.0"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2008.0"
},
{
"model": "enterprise server x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"model": "enterprise server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"model": "corporate server x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "4.0"
},
{
"model": "corporate server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "4.0"
},
{
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.4.2"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.4.1"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.10"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.9"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.8"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.7"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.6"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.5"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.3"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.3.2"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.12"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.10"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.9"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.8"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.4"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.2.2"
},
{
"model": "software products cups rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.23"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.23"
},
{
"model": "software products cups rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.22"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.22"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.21"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.20"
},
{
"model": "software products cups rc5",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.19"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.19"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.18"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.17"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.16"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.15"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.14"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.13"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.12"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.10"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.7"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.6"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-5"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-3"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-2"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.1"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.0.4-8"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.0.4"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux s/390",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux mipsel",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux mips",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux m68k",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux ia-64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux ia-32",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux hppa",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux armel",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux alpha",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "5.0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.8"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.7"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.6"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.5"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.4"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.3"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.2"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.8"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.7"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.6"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.5"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5.1"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.5"
},
{
"model": "mac os server",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
},
{
"model": "mac os",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
}
],
"sources": [
{
"db": "BID",
"id": "38524"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ronald Volgers",
"sources": [
{
"db": "BID",
"id": "38524"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
}
],
"trust": 0.9
},
"cve": "CVE-2010-0393",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Local",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 6.9,
"confidentialityImpact": "Complete",
"exploitabilityScore": null,
"id": "CVE-2010-0393",
"impactScore": null,
"integrityImpact": "Complete",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.4,
"id": "VHN-42998",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:L/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2010-0393",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201003-068",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-42998",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers. CUPS (Common UNIX Printing System) is prone to a local security-weakness when loading localized message strings from arbitrary files. \nExploiting this issue in conjunction with a local format-string issue may allow attackers to execute arbitrary code with superuser privileges, completely compromising affected computers. It is based on the Internet Printing Protocol and provides most PostScript and raster printer services. The lppasswd component of CUPS does not safely use the LOCALEDIR environment variable, which may lead to format string attacks. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n _______________________________________________________________________\n\n Mandriva Linux Security Advisory MDVSA-2010:073-1\n http://www.mandriva.com/security/\n _______________________________________________________________________\n\n Package : cups\n Date : April 14, 2010\n Affected: 2010.0\n _______________________________________________________________________\n\n Problem Description:\n\n Multiple vulnerabilities has been found and corrected in cups:\n \n CUPS in does not properly handle (1) HTTP headers and (2) HTML\n templates, which allows remote attackers to conduct cross-site\n scripting (XSS) attacks and HTTP response splitting attacks via vectors\n related to (a) the product\u0027s web interface, (b) the configuration of\n the print system, and (c) the titles of printed jobs (CVE-2009-2820). \n \n Use-after-free vulnerability in the abstract file-descriptor handling\n interface in the cupsdDoSelect function in scheduler/select.c in the\n scheduler in cupsd in CUPS 1.3.7 and 1.3.10 allows remote attackers\n to cause a denial of service (daemon crash or hang) via a client\n disconnection during listing of a large number of print jobs, related\n to improperly maintaining a reference count. NOTE: some of these\n details are obtained from third party information (CVE-2009-3553). \n \n Use-after-free vulnerability in the abstract file-descriptor handling\n interface in the cupsdDoSelect function in scheduler/select.c in the\n scheduler in cupsd in CUPS 1.3.7, 1.3.9, 1.3.10, and 1.4.1, when kqueue\n or epoll is used, allows remote attackers to cause a denial of service\n (daemon crash or hang) via a client disconnection during listing\n of a large number of print jobs, related to improperly maintaining\n a reference count. NOTE: some of these details are obtained from\n third party information. NOTE: this vulnerability exists because of\n an incomplete fix for CVE-2009-3553 (CVE-2010-0302). \n \n The updated packages have been patched to correct these issues. \n\n Update:\n\n Packages for Mandriva Linux 2010.0 was missing with\n MDVSA-2010:073. This advisory provides packages for 2010.0 as well. \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2820\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0302\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0393\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Linux 2010.0:\n ba3d43f654fd15aea9f81eadb57c3022 2010.0/i586/cups-1.4.1-12.1mdv2010.0.i586.rpm\n b1f275796b029190380e40ae23ae8ed0 2010.0/i586/cups-common-1.4.1-12.1mdv2010.0.i586.rpm\n 296b30522aa7c008767c6b285aa4b715 2010.0/i586/cups-serial-1.4.1-12.1mdv2010.0.i586.rpm\n b3abb3c2299c1cb32848c0ee5954eed8 2010.0/i586/libcups2-1.4.1-12.1mdv2010.0.i586.rpm\n d91c255a1e42e5988f1d8d2d94ffd369 2010.0/i586/libcups2-devel-1.4.1-12.1mdv2010.0.i586.rpm\n ba336d918bbe9d03cf4fa823293bfb37 2010.0/i586/php-cups-1.4.1-12.1mdv2010.0.i586.rpm \n c3aee001d1629963053f475a49b7cd5d 2010.0/SRPMS/cups-1.4.1-12.1mdv2010.0.src.rpm\n\n Mandriva Linux 2010.0/X86_64:\n 7c089025f467e5b366e57a15e85857ce 2010.0/x86_64/cups-1.4.1-12.1mdv2010.0.x86_64.rpm\n 0e0e4ad3a4d42022d22a88ee8568f8bf 2010.0/x86_64/cups-common-1.4.1-12.1mdv2010.0.x86_64.rpm\n cb7b4cadce5a174bbd4027f478b38c26 2010.0/x86_64/cups-serial-1.4.1-12.1mdv2010.0.x86_64.rpm\n 653bd25375281b919c6438e71052359d 2010.0/x86_64/lib64cups2-1.4.1-12.1mdv2010.0.x86_64.rpm\n 7bebd27fa6ce2aa5667d28fd7b06702e 2010.0/x86_64/lib64cups2-devel-1.4.1-12.1mdv2010.0.x86_64.rpm\n 34452fc88d7a16591eb653a32c6daa28 2010.0/x86_64/php-cups-1.4.1-12.1mdv2010.0.x86_64.rpm \n c3aee001d1629963053f475a49b7cd5d 2010.0/SRPMS/cups-1.4.1-12.1mdv2010.0.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n http://www.mandriva.com/security/advisories\n\n If you want to report vulnerabilities, please contact\n\n security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID Date User ID\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\n \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (GNU/Linux)\n\niD8DBQFLxclfmqjQ0CJFipgRAmhmAJ4qtZ7GxqbmNOSfJeozcsqRCBvAsACg2vG+\nNRt/ytxq5LWHwOAGFnOKnIw=\n=ayqT\n-----END PGP SIGNATURE-----\n. ----------------------------------------------------------------------\n\n\nUse WSUS to deploy 3rd party patches\n\nPublic BETA\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_3rd_third_party_patching/\n\n\n----------------------------------------------------------------------\n\nTITLE:\nCUPS \"lppasswd\" Privilege Escalation Vulnerability\n\nSECUNIA ADVISORY ID:\nSA38789\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/38789/\n\nDESCRIPTION:\nA vulnerability has been discovered in CUPS, which can be exploited\nby malicious, local users to gain escalated privileges. \n\nThe vulnerability is caused due to the \"lppasswd\" utility (which may\nbe installed suid root) not properly verifying certain environment\nvariables (e.g. \"LOCALEDIR\") before using them. This can be exploited\nto e.g. execute arbitrary code by tricking the utility into using a\nspecially crafted localisation file containing malicious format\nstrings. \n\nThe vulnerability is confirmed in version 1.3.11. Other versions may\nalso be affected. \n\nNote: The manual page for \"lppasswd\" in version 1.3.11 recommends\nadministrators to change or disable the ownership of the file for\nsecurity reasons. CUPS 1.4.0, 1.4.1, and 1.4.2 do not install the\n\"lppasswd\" utility as suid root by default. \n\nSOLUTION:\nRestrict access to trusted users only. Remove the suid-bit from the\n\"lppasswd\" utility. \n\nPROVIDED AND/OR DISCOVERED BY:\nUbuntu credits Ronald Volgers. \n\nCHANGELOG:\n2010-03-04: Increased \"criticality\". \n\nORIGINAL ADVISORY:\nCUPS:\nhttp://www.cups.org/str.php?L3482\n\nRed Hat bug #558460:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=558460\n\nUSN-906-1:\nhttps://lists.ubuntu.com/archives/ubuntu-security-announce/2010-March/001054.html\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. This works as the lppasswd\nbinary happens to be installed with setuid 0 permissions. \n\n\nFor the stable distribution (lenny), this problem has been fixed in\nversion 1.3.8-1+lenny8. \n\nFor the testing distribution (squeeze) this problem will be fixed soon. \n\nFor the unstable distribution (sid) this problem has been fixed in\nversion 1.4.2-9.1. \n\n\nWe recommend that you upgrade your cups packages. \n\nUpgrade instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file. \n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration. \n\n\nDebian GNU/Linux 5.0 alias lenny\n- --------------------------------\n\nDebian (stable)\n- ---------------\n\nStable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. \n\nSource archives:\n\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.dsc\n Size/MD5 checksum: 1837 a511bb4de5c768a4862a55d227a4ff70\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.diff.gz\n Size/MD5 checksum: 189649 82c747daa3ed7bb71e10094a50a0cabd\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8.orig.tar.gz\n Size/MD5 checksum: 4796827 10efe9825c1a1dcd325be47a6cc21faf\n\nArchitecture independent packages:\n\n http://security.debian.org/pool/updates/main/c/cups/cups-common_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 1181030 11167383d8fa0f8518cb550e4946c109\n http://security.debian.org/pool/updates/main/c/cups/cupsys-common_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52398 15e639e1ac4d44042e5e5245d0670cb9\n http://security.debian.org/pool/updates/main/c/cups/cupsys-bsd_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52398 796f92741e989eac9ba214ede18630d8\n http://security.debian.org/pool/updates/main/c/cups/libcupsys2-dev_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52406 2bce3838eaf23010ab40842e6cd15b64\n http://security.debian.org/pool/updates/main/c/cups/cupsys-dbg_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52398 57ee5c01a3a6b88e9dd73a5fae4052e6\n http://security.debian.org/pool/updates/main/c/cups/libcupsys2_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52398 a57e7e5775ef54f3b173aa78cb56925c\n http://security.debian.org/pool/updates/main/c/cups/cupsys-client_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52402 e558bca7e419849e9985fab5b253d541\n http://security.debian.org/pool/updates/main/c/cups/cupsys_1.3.8-1+lenny8_all.deb\n Size/MD5 checksum: 52382 6fb5db2ff939a66c82805069e2673122\n\nalpha architecture (DEC Alpha)\n\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 445498 e4c86a6a0e2956a543432ea47d2b4e4d\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 119902 54fbde6934338f62546a3a9d63366e24\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 108236 b5585a98bb2ba4395aa8b995663eb449\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 39296 ba38fb23064f0265b08e634c5553680c\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 81528 586baf5c22624b387b17522f9336a62f\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 178786 855af4932cc8c4d8fa79615cfb9268d7\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 1149260 0655f89a290365b71040ad2ab6d5708e\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_alpha.deb\n Size/MD5 checksum: 2103240 eb83ee8de10a7bd58918742bd92afb26\n\namd64 architecture (AMD x86_64 (AMD64))\n\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 2072340 d50623c5ddf4a13d88ad72c77b423b7f\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 99958 c80b2253f2bd929eea5fa3e4d630007b\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 1195800 c8fe761855122b595442161dc215685f\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 61016 bd0dbe1b2ea8cd4f4608684c8d175aeb\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 169070 a8cc5fcba2086f06cb475b363dae39d1\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 401586 d0c2f361b90a7d43a29c1267e41ac013\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 116782 535933bcbdf17abc8d11d66d6059f398\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_amd64.deb\n Size/MD5 checksum: 37256 c48a07f0d0dd59aec4bc88238fe51ea6\n\narm architecture (ARM)\n\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 1125054 47b869c7af5c841936301dc713aa3bb3\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 2061240 f8f6aec89d4122cd7c0c5f1c80185490\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 113164 862335112c4cec83b6f774a39e3fc2b9\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 155534 3aa347eb9e30df946b834ac016f8d283\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 55352 0b8cd0cfc9373f4ab4be9a068868818d\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 36474 9925987df33366768ee7ccfa4566e1d4\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 97414 d43e5b18042c48ebc6d2a1d4e6c12f2c\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_arm.deb\n Size/MD5 checksum: 387712 33ece2737438d084d26ac6fc5cd760b9\n\narmel architecture (ARM EABI)\n\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 157028 3e4149d7b7e7e845bc4d3730404190f3\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 119310 100d72c77beb954a87986af1ecd647c7\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 54732 1190d22789b9309f1e78860510301ab3\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 2077838 4a8ff6e73ea9bf9e94ff5825c1174779\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 387602 45a8362c0dc84b4a4c8fdd2e33f80bbc\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 98558 c8b588b3ab696cb2e88baf2f5d94741f\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 38772 8aacdda63b2ee8cb8a63421931942814\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_armel.deb\n Size/MD5 checksum: 1129310 149f6fec84d67a60b62477c37e39d042\n\nhppa architecture (HP PA RISC)\n\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 406772 d1d53dd5d0f75b59024ad7956564f29f\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 39988 5a975486c7cb9f472ee0d45ffd9b3683\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 172874 4186b6262c3e279a9cc8b77d029e4c1e\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 63140 9039a2811fb6d3945034e4cbf7ffe599\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 1142920 bc221c80a35f48369d4ecf5db639ab96\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 2120838 18e3dc2e1e7b4f0446422395c19ffa58\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 121720 fa37b7429bf9485808067fd67b05da59\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_hppa.deb\n Size/MD5 checksum: 103158 59ff4ef65704e82c04629a8744c0f8bc\n\ni386 architecture (Intel ia32)\n\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 1097596 fd5c74be5bc03649abba8ebbf77d6451\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 38010 5d2bd65adba678c033e7ca5a29a9d955\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 165576 71ce31f39a6e1e720af95d4e82a88d8b\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 60424 0e4cea9daca41e520dbce560b4832d48\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 99486 87819be26173976d930461a6577070a5\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 394172 e63cbc2f88f30d3f1b66d1b55c1d169c\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 2052542 9454ca978cc4a28481c11a5cdbd33438\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_i386.deb\n Size/MD5 checksum: 115942 1f751d318fb9fef7c91b0a9c0c409f9e\n\nia64 architecture (Intel ia64)\n\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 139102 78b2ab586f3187909d930abd87c3ec84\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 86012 99a615920328daa054cfe62052a93cb7\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 209294 b01ae496c3cb881f4decc3a4ece08122\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 2283850 175a894311f8cff9fe650c3baa0b6d46\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 447802 38383f1f2be111677a79ebfcd247d61d\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 123628 11e9d5f4b78ff50d121d14fdbe6a782b\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 1151580 af7b35bcac465ca8cbabb63651cc2cb2\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_ia64.deb\n Size/MD5 checksum: 41284 57e9177cef831639476cc289d8067834\n\nmipsel architecture (MIPS (Little Endian))\n\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 65220 f432b20c68866e83e696aaafeca0ea32\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 1158992 129547967aab4dc3a95e89b497828069\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 99032 f563929513a294d97793f5aba3f0cf15\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 110006 7df897c72bb496c1660022be4eb53b4c\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 403444 5835503a1026ba846954976d3e52cebc\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 36158 ebdbbdc958b51e851600d688738c8089\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 2030710 6aed4a117ee98cfd751204c957ba7c1d\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_mipsel.deb\n Size/MD5 checksum: 158496 987c55cca3677a14b836597dbb1f0327\n\npowerpc architecture (PowerPC)\n\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 105640 ae6a5f63f589ad5bae2d7ecd4be269e1\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 61094 9d02e8bef845830b2b1e0e920eb0ada0\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 135688 6ec7ee1ad2eb2f543d2eff4dea847a41\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 43906 8e2a1126f6e4cca776ca13cf7e49625b\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 174512 52a39e14eda691e3563c3278fcfa25ff\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 395666 9eca6ef2e6429b4ac2226847c8122758\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 2137268 b6cacb0e0051f563ac0a027d3dac8ce0\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_powerpc.deb\n Size/MD5 checksum: 1196662 875cce4fd93adff28ef3f696696ac363\n\ns390 architecture (IBM S/390)\n\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 118590 3cf70157d2a0f74c419c945a9ec65785\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 60714 d1a71e6365fb95c20bb9d720b3a5ab32\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 101722 71e9684bab935487bc3ff48c69de5ba7\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 37818 bf29d032e9a00e33b62fafda191ceceb\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 2093186 3588fb878456ae05781d5467d5a245b3\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 399922 d481af6ea365c4ad436493ce8adb92d7\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 1190826 185c58c1bc4b622fca84715f749eb9bd\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_s390.deb\n Size/MD5 checksum: 171864 7731f029fa9c052a7ccbefd457a36ede\n\nsparc architecture (Sun SPARC/UltraSPARC)\n\n http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 395004 782356afcc6dc3f4f9c96cd498a2baf3\n http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 2071128 d75e27ad18dc7e655aab7be4e6d4be19\n http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 1057940 2b5f7135c895f38353916b4e7bcaec83\n http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 116708 2f59a6913340ba69f12bc7d36b354584\n http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 161096 ee6815c329c6c619fcbb9fbb45048895\n http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 38870 016788da55547b0ea7cb51870249fb35\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 97330 1f6d5116c20a0cb54a41c3bb34a3cc92\n http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_sparc.deb\n Size/MD5 checksum: 57662 1080e4dbc4db2d41e67e15061246bb42\n\n\n These files will probably be moved into the stable distribution on\n its next update. \n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show \u003cpkg\u003e\u0027 and http://packages.debian.org/\u003cpkg\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (GNU/Linux)\n\niEYEARECAAYFAkuO3scACgkQHYflSXNkfP9xngCgr1BLG5dUngbgdET9DXmvo/zA\ncX0AoLLmmJ9/MliGiKRCRv2UKj4WiM3k\n=awyu\n-----END PGP SIGNATURE-----\n. ===========================================================\nUbuntu Security Notice USN-906-1 March 03, 2010\ncups, cupsys vulnerabilities\nCVE-2009-3553, CVE-2010-0302, CVE-2010-0393\n===========================================================\n\nA security issue affects the following Ubuntu releases:\n\nUbuntu 6.06 LTS\nUbuntu 8.04 LTS\nUbuntu 8.10\nUbuntu 9.04\nUbuntu 9.10\n\nThis advisory also applies to the corresponding versions of\nKubuntu, Edubuntu, and Xubuntu. \n\nThe problem can be corrected by upgrading your system to the\nfollowing package versions:\n\nUbuntu 6.06 LTS:\n cupsys 1.2.2-0ubuntu0.6.06.17\n cupsys-client 1.2.2-0ubuntu0.6.06.17\n\nUbuntu 8.04 LTS:\n cupsys 1.3.7-1ubuntu3.8\n cupsys-client 1.3.7-1ubuntu3.8\n\nUbuntu 8.10:\n cups 1.3.9-2ubuntu9.5\n cups-client 1.3.9-2ubuntu9.5\n\nUbuntu 9.04:\n cups 1.3.9-17ubuntu3.6\n cups-client 1.3.9-17ubuntu3.6\n\nUbuntu 9.10:\n cups 1.4.1-5ubuntu2.4\n cups-client 1.4.1-5ubuntu2.4\n\nIn general, a standard system upgrade is sufficient to effect the\nnecessary changes. \n\nDetails follow:\n\nIt was discovered that the CUPS scheduler did not properly handle certain\nnetwork operations. A local attacker could exploit this with a format-string\nvulnerability leading to a root privilege escalation. The default compiler\noptions for Ubuntu 8.10, 9.04 and 9.10 should reduce this vulnerability to\na denial of service. (CVE-2010-0393)\n\n\nUpdated packages for Ubuntu 6.06 LTS:\n\n Source archives:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.diff.gz\n Size/MD5: 106482 26e1af0359723f0fe887019ea8973a7e\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.dsc\n Size/MD5: 1061 400968d3ecf83db01f0a427f10f2998e\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2.orig.tar.gz\n Size/MD5: 4070384 2c99b8aa4c8dc25c8a84f9c06aa52e3e\n\n Architecture independent packages:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.2.2-0ubuntu0.6.06.17_all.deb\n Size/MD5: 998 776cbf76de0fa4da83fa66cac2a2ee9c\n\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 36220 1a0b165edf4aaff4b063ef5ffb44aec3\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 81834 6fc3613d660d8193ef5bc8820a7241d9\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 2289018 87d64d2f3a97289ad6b6db57d090ca2d\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 6090 85aeada029ad3c01ff7f1e18f9ea9cc2\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 77908 96e28918fdf830eb12336aadedf9f281\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 25740 85b73ffa3c93b1cca0f9421fdaa01cc3\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_amd64.deb\n Size/MD5: 130734 938995599b4be32a725528c80981fa78\n\n i386 architecture (x86 compatible Intel/AMD):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 34766 47d4bdcf450f6d8d30206c35192f1b7d\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 77930 e830a9300772160fb0a6748da948f246\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 2256104 bcfa53bda3ed0c1e50636e804af11055\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 6094 34a470a2aaff3e3ab10eea29a1bd8200\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 77022 ab3b5c283d4ec643297685c034f1073c\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 25748 d5904841e833850731621090c1b88c8c\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_i386.deb\n Size/MD5: 122908 eb39cde640458c67403c00cfd65ea312\n\n powerpc architecture (Apple Macintosh G3/G4/G5):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 40474 a47c9a5aad3feee3c9218d32e3f03f85\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 89482 81e3f9ad6e8fe3cb3096b133bfb4fb5b\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 2303712 fffb516669489cf38ce5f410b58112af\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 6092 8c6d3af926e6729378b1ba23508e3c6b\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 79548 169e4c3351cf2ef0c99e478d8e2a3a46\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 25740 f0d21ba1ea537495d3953a22999d1dd4\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_powerpc.deb\n Size/MD5: 128662 98b0c1483cc7021fff335da8d79c67c2\n\n sparc architecture (Sun SPARC/UltraSPARC):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 35388 1128a347e119ca9525784ed50da5d0ab\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 78684 596751675fee6063e59dab02e7b44543\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 2289934 9bd77e6533b77678840172bcf285c157\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 6096 a11d49069913645b3a947d2dfa6f5f84\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 76832 c1049c92d30205b8032648dfbd90299c\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 25744 d2d1088e3744d305b6c90aca7eda4be0\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_sparc.deb\n Size/MD5: 124486 60a22b1cccb08eaab9847b9e87c59032\n\nUpdated packages for Ubuntu 8.04 LTS:\n\n Source archives:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.diff.gz\n Size/MD5: 141577 5cb2a7055c83f2535e6704212c06ea0c\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.dsc\n Size/MD5: 1442 d42e1f9c2424210f66acfaeb4ecf293a\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7.orig.tar.gz\n Size/MD5: 4700333 383e556d9841475847da6076c88da467\n\n Architecture independent packages:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-common_1.3.7-1ubuntu3.8_all.deb\n Size/MD5: 1144392 72c2295be929ac91622921b866586810\n\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 37522 606cf4d3db841e5c7699af8e6063d28a\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 90020 5494f76c3c0aff50e61b0e7065d4fc45\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 1882420 fbf517a3c599b99d5ea8936c09f4a6d6\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 60800 2b3dd2ab96e425ab134602608f0d3530\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 50216 27fb4f492cc7bf62c01a275741d37011\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 345048 0525be5bc4dd045cd78a1b284f98398a\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_amd64.deb\n Size/MD5: 178536 a044522e561b9b3be73617a175cc399d\n\n i386 architecture (x86 compatible Intel/AMD):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 36956 0507d5e834e622f33412109dcb260037\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 88530 244e700f4596074b37c4b7acb984dacc\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 1864902 b6f438dea33b89a9f268d732d670faf1\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 60090 e83c89c8fe55e2f2e79d424e4231f8a1\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 49862 97abed0edb9dfbd42e8ba975c424e6d8\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 339414 1e4250fd6c379296cfba76f67ab97465\n http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_i386.deb\n Size/MD5: 175410 efdf295f468c419fd957e69f98fd715a\n\n lpia architecture (Low Power Intel Architecture):\n\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 36660 58ce4787d4d5b43fdc762f21f06bb6bf\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 88834 ea87ff5e386e37ddcd2a3678e85764e5\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 1867016 ba1534fcc9263b70868c4ed449529e25\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 60492 e06a5a3660f9967ec6e0040a486d7362\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 50808 ca0c034e3beff76b902c6471afbd7268\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 337072 bfaa21b082ce3052922a179d522213d4\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_lpia.deb\n Size/MD5: 174440 8e2dd41e1e07942ee0f53e05c608206a\n\n powerpc architecture (Apple Macintosh G3/G4/G5):\n\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 46932 a5d83468e8e0269a483c914230768ea3\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 110654 ec3d80099ccbaeb3f0929644f45bbd75\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 1951280 f475ae7f5ae8ad00bc1ebd7c4634c3ae\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 59922 cb7e8e802dfbe515260578f585ee4427\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 54924 234a155df73c7ef047ac3c5c8b2e132a\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 341760 1ada03ee442854916b34f267b1301407\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_powerpc.deb\n Size/MD5: 184292 e080a077141436e9837682cf5c6e56e1\n\n sparc architecture (Sun SPARC/UltraSPARC):\n\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 38038 15aef403a65149edb1b6e3c87bbcf1e3\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 91026 a4ade2e1d03f94b36122a5788f37cc97\n http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 1899806 de0f0a1899697c7add1960031257c51e\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 57822 c2af4acac6a11e98f72703a25b2ebdfc\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 48224 cf486639b2c6b6247afe109eb73e30d7\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 341494 8c21fd99687d9fd49fa97e6c4638338e\n http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_sparc.deb\n Size/MD5: 174130 9c878b37d2afd35ee0b50c077490112e\n\nUpdated packages for Ubuntu 8.10:\n\n Source archives:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.diff.gz\n Size/MD5: 331097 6adf07d4858d39e6047a97c0a312901e\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.dsc\n Size/MD5: 2044 d77dce1f6e35cabbd18e84a7c7031b0d\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9.orig.tar.gz\n Size/MD5: 4809771 e6f2d90491ed050e5ff2104b617b88ea\n\n Architecture independent packages:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 1163190 5c0dee3c7fd7541494ff7dc348be8728\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-bsd_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58560 74c932189d98c843872876adc83c989e\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-client_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58568 0666bac83bfb1edcc37931ad25588204\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58562 f524010f0aea453b001b084250bb7063\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58552 a55ec8b8772c680a7413afb1b069ee3e\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58574 420d72079939829054f9bb7978375ecd\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 4536 660fc4e6b26c050504a674aec5e0b8cd\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-2ubuntu9.5_all.deb\n Size/MD5: 58560 919055c4a196d7cfa5e93a3e73de24f9\n\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 37296 0640e7fff6aa2dbbc93a839f641e1da0\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 119772 fc950280a6a56b99486a29868c65bf9a\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 1688940 84c0da9c505411cd3cbee063687215fa\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 2174144 1bff27592c202999f0fd2705eeb8282e\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 352308 bcdc4e90a86a22e503cf20e492f57e0f\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 173636 d477c60212f8098b6e92c2b5ec0b7ee2\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 61320 35baa0391a49f0490f49a97d5c8d57d4\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_amd64.deb\n Size/MD5: 52322 d0caa49b4da1ea3ce447d2fa161d7394\n\n i386 architecture (x86 compatible Intel/AMD):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 36226 1374ff5d461c4aafe2b57822f45c11c6\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 115316 0a8d0a452e3cd7d37eb72a9b4bacd8c8\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 1549000 468b48af21f437e2942d4b447d18d9ef\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 2141316 d117bac8e26451e37827a62749d39b4d\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 346096 26576542e0a94b17da8ddd971fbffa90\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 170556 7739c110695754553926fad31463187f\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 60538 5c5832067d06795cbab9e65a885ba240\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_i386.deb\n Size/MD5: 51720 e7d90e5e4eac150dfd205ac17b686cc8\n\n lpia architecture (Low Power Intel Architecture):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 36028 5bfdf3e87b3764eb20c0093fb1de1d3e\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 114504 a4f3e28e6eb86599111687a0f7235c45\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 1577892 6c0014be2e9e878679480239a494e917\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 2138164 0a4c78f2bda571599ecffc75dade8006\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 343092 df67f3a082314f41e14cdf97c35c4668\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 168874 dcdab1a3f91f1f2a91a20d01873545ba\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 60626 27c5b3fec56fcb1d7215fd35dfa31ec1\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_lpia.deb\n Size/MD5: 52394 5644013cd3dec455b6b6d88b4306d67d\n\n powerpc architecture (Apple Macintosh G3/G4/G5):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 43566 986c0bd78d2fc4fb5ae76598b24b1a41\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 138118 cc8ece0b9d10792ead1b7902924a6a81\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 1669132 eefc44a29391bb799adc54b6cb412cf3\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 2266096 b798bac78d4f645b90683b3a7901ff4d\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 348056 e9100409aabe02a51ea9fd6c315ab5b6\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 177934 9d812213782055304cc92b4b3ca69894\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 61266 7287aa743d0135c2d16bf29acf9cf915\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_powerpc.deb\n Size/MD5: 57452 b132aaccd9bcf40dc9ae38783f69c6a6\n\n sparc architecture (Sun SPARC/UltraSPARC):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 37220 5399de66103270899259960bb9d61345\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 117550 80acdf6867e804b3aa00055737534b57\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 1496764 e434ccdce381acf459b8d387881057d9\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 2202892 bbe3b1587f55b0bd868ce5e6fd4a38e9\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 344914 8a6824c84362ffbf4f9846a65045354a\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 166792 2be506fc868b369e46cf9f9d5fe83e69\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 57854 aef2dd0a14d3a8f01142d78e40ddcb67\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_sparc.deb\n Size/MD5: 49804 8d12ec1a43df8c8c40f88082139d2785\n\nUpdated packages for Ubuntu 9.04:\n\n Source archives:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.diff.gz\n Size/MD5: 335789 4f5f61340c4875048c60d69f82dec645\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.dsc\n Size/MD5: 1995 e338a99e7a2e02a57415885e285f3bb1\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9.orig.tar.gz\n Size/MD5: 4809771 e6f2d90491ed050e5ff2104b617b88ea\n\n Architecture independent packages:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 1165632 9b0854975cf994bd9233d6469e777e01\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60870 0e74155e761a4d852866bfdac0fb18fb\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60876 ad4e2582235225612d6c14e65dbcba3d\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60868 636f7492dabc042d1bc7e11864b38df1\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60872 47806c56c4700090e125496e23d8529c\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 4516 0e4d49c326db4af8add9edd88b561ad9\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60856 09bb0b47cf251fde476503402b0d0518\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-17ubuntu3.6_all.deb\n Size/MD5: 60866 02b07214f91997c6b4f5d017aff0655e\n\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 37294 f14e9d6deb8a90dc55ba033dd6932f29\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 119756 b6d1f12fdca56879c84d177280535945\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 1664430 e0829de2955259a1169ca120f0a0a674\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 2170170 47904ff162f68734105645d802262448\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 352252 cff0030f199a0c96accc192e4168339c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 177900 da8f57dc1c56c823d459c12b98e64d2a\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 61264 5deccf4e07529b9e4676a83a556cebde\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_amd64.deb\n Size/MD5: 52226 306d5a5075974aa902c7e10066420efa\n\n i386 architecture (x86 compatible Intel/AMD):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 36230 5d95974ec58afa8d26b10d7b9c46a66b\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 115278 9011610cdad6d618456f508e3fe02107\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 1523946 660619a4cbb8df04bd81354ab6059f6c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 2136486 7f7dea27d4901a02daf9497bd242e2d9\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 346068 67c31d2afa56164900bb916480386b79\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 174416 c84631d45fd35facbf136270470844d4\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 60498 31d407917c749a659835e23c99eef0bb\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_i386.deb\n Size/MD5: 51542 5026ab999fb97ac800bd185af3a8cff1\n\n lpia architecture (Low Power Intel Architecture):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 36022 952070683ed6130fbc8e5531e2142063\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 114500 977d5c00dc13327bc0c9bce453473388\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 1552094 4fecfb548b223615fc7ce88f8fb94264\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 2134028 8dad89838f050c4a375c01ab4b3b2559\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 343052 0139347ae444d4d9f0b9b1420ebfc04f\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 172714 406bb68cba379412650849ea003eb537\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 60668 0a2993f0ac79fc4a91648991be1b0976\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_lpia.deb\n Size/MD5: 52342 a501ebcafdf48300f5326632ce1b08b6\n\n powerpc architecture (Apple Macintosh G3/G4/G5):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 43574 ae6a41699272fc0b360ba6555fd4e7ef\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 138086 95d5d1551240a86de61f4472f8433d01\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 1640174 24942cd5b3e82cb8f700880ace4cb40b\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 2257684 78ff8dc9f337c46ade897f22092939af\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 347984 9663f15cddd48aaa7d389ce1244aebc1\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 183308 1d188a3ea31eaba68b620b8fece8fcd8\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 61306 56306bfa507550c07d02b820380e19c3\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_powerpc.deb\n Size/MD5: 57406 be85c41fd62fcaf3a28107a1614146d4\n\n sparc architecture (Sun SPARC/UltraSPARC):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 37218 adeb034eaeadb51fd3723f382cab7b7c\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 117506 7a8039312accd4ce6be1596403616744\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 1468404 c3f80af2a2fc00c590562ea19e6fe9f2\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 2203876 b75a1f2918317d00cc1540014c42e8d0\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 344838 5976a1b94be50118b6ddcdc4b40de073\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 170236 262941bf660cc95765b72cf5aa13e14d\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 57860 36426cde9ee4e2e2dc813ba4d0e98f19\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_sparc.deb\n Size/MD5: 49702 590f4b45bf412b2f59d9ad4ea395754c\n\nUpdated packages for Ubuntu 9.10:\n\n Source archives:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.diff.gz\n Size/MD5: 414730 d1a0c764ccf1fedd4c3427c45d19a9ca\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.dsc\n Size/MD5: 2273 4a8ceed09060814e0cf5070412e06aae\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1.orig.tar.gz\n Size/MD5: 5287327 4dc8f431ef50752dfd61d9d4959abd06\n\n Architecture independent packages:\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 1419910 5ccad7198ba64c4d2e487109d38baf6c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 69572 33961e905c819b2d67c641fa0226596f\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsddk_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 69534 04b34f17b2f23a24254d74d266121b10\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 69562 f624d2fcb8549771cd920148ba2ace45\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 69574 e0b8e717d5bd0740c7af047debb050f7\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 4548 45c04ec4b5ef40e7b5a05b97cfff0821\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.4.1-5ubuntu2.4_all.deb\n Size/MD5: 69554 10ac2f07563d4eb693e27195b7778935\n\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 36708 60bcfe9509bf6c460a24b32f3dc22f3a\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 120258 31f336e66b77fdb68624eee6c3f6aa86\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 89636 f2300503230b0418b939bbf0acbddd50\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 1909456 70052df26d278ec8fbcb89e92801f59c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 210406 50cf5e47fc69aa59dafcc51fd1ba7aca\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 218936 7f04aa35b965955b0c12566d18dd27bc\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 101856 80b6e20deaa9ec8006b6233daea025c4\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 31586 cac166753bfc5dad29293f69669402fe\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 90190 bdf93f96a315ba2313eb0bc86a24fa2b\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 22192 be5b0eba29c355d76aa86db66b328b8c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 61528 bcfe65ac2cd9cfab070635f5ede4482b\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 53160 a3cff812c204698c97027c47a2a8032d\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 81196 7fdf8a14125aed96ba11cfad2df8450b\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 15492 406aa3da43f5949e6d062bf117a8656c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 143032 c29bf3ee9e457b0096ada17948d85afb\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 60098 1cd00de7321f747b33a82c06bec69625\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_amd64.deb\n Size/MD5: 34526 8a2d07f4f318a7fb578aef25a1fa106b\n\n i386 architecture (x86 compatible Intel/AMD):\n\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 35470 59752d8fe6b0ab6b4be4bc9553dd67fe\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 115326 24a5ebd4c6b0c9932ec34481bdfc27fd\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 88804 71f3cbd750cb6283dc29cdea5e7b8dd3\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 1867476 93037d1769ff83d77a6da5ed93e82058\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 199428 dc33c5038d26a0b76f1b694598c004a0\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 213030 031bc59c14807b8d6c7347c2a3ba2e8c\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 101048 e751022124d2496ac051280b70e75d88\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 31376 133412f956a2808d74ae62bc73ca6c48\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 90402 4c375adba3718768e98346d10ecfc2ed\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 22060 6969c7f346d155095980d127763e205a\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 60314 6d620c4a4380d7e65c2dcf147c7df896\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 52412 6641e47022e889de1525eaf5c5305eca\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 81106 7e3b8f7ddec3a8a5b8377b0234270268\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 15206 fd9858648c9df78fae4a974955c0e475\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 141568 1db2ce91ffedfa1bbde68b2756cfe389\n http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 61438 1299d9de795e485872507e21e42b20e5\n http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_i386.deb\n Size/MD5: 32824 a7d8171d0f2888bb97f59387b5953db2\n\n lpia architecture (Low Power Intel Architecture):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 35442 dd26d3e196a3bc1880331dc3821cdbab\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 115178 76977be3cbcb0d5f4a22ada4071188e4\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 88774 6516931d5dce31c51b80f107a6c78f29\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 1865004 e482b421a57cc75b18d979de2e82fb7a\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 196772 061c86b147f9fdb980e7d40d8e84dabd\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 211440 13a330ef0e77a7f20f0e803140148905\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 100448 17f556fffdb82e83559268361e0eb53f\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 31206 27d0d62e0c989545ed7455f832eb2b25\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 89820 86176d7a6557617ff30aa83bcc875196\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 21778 e04668e8936e1d32e7e33414e570fcee\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 59950 9569de467d24173a0c35b838fea647fc\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 52576 582213e9cde03104f3c1795d06984197\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 81056 c1a6cca183116319ed1a095806cf1c8c\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 15304 21d41f59b097afbd27a12f7c9e877b32\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 141898 15553deba7c1e9c98136330e97b59119\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 62662 ecc362e334c91a0530c356b17e6a2641\n http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_lpia.deb\n Size/MD5: 33264 325a9170ecf6cd1dc9f955be9bbc1d24\n\n powerpc architecture (Apple Macintosh G3/G4/G5):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 37006 3acbe062b83fdc269964eef5675a89c5\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 121650 74995951c11f700b551f6c8ce2badb23\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 89384 8f0ce2467cda194e493e87369aab765d\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 1930866 ef1a8fd29f47f928b81c785730ce89d9\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 203588 decd7de1cafe69b61d713988fe55af37\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 223504 f60c1ea0858fd39961852c870c7fce49\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 101020 c0ad517da1a8bc09ccf97903a3ded8c9\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 33348 2424426af873cd4207b8226ebb8490c5\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 89594 9e6125fb851403ef7e80f09840eaa89a\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 22324 a4b8cbb7319e42721479d3092ef23f16\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 60618 01ffa1358e2fb0c5dd307cd8d135c14f\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 55376 fa276276aa683c19b9fc10bf65372347\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 81558 c9060c3ec4eca6ae2ce532f44298e556\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 15790 c857b043bf0bb4ff3dfc0db38de89f99\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 141118 92099a9250e369378fe8287e556b21a7\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 64954 b7da8579507c4db05cc78df34d289f76\n http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_powerpc.deb\n Size/MD5: 34790 964c7ecb9faa3a0b1a115a2a06a66e75\n\n sparc architecture (Sun SPARC/UltraSPARC):\n\n http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 36068 7ab9b44191ad5078c5f63a521744ca23\n http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 117816 2be453254c5f80dc1c353acc62a3c443\n http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 89232 09f73b5d95d3248b5ecc0393036ddbff\n http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 1954238 7f4762af124ba5e650569b6fa2fbb5c7\n http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 201516 730d6a0e1428a7165e01a565cc810d8a\n http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 210594 4f16bfe7a76a1c9cb137401290c4f5c1\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 102698 fe023955fc4e93236d2ff46b685bc32b\n http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 31560 4be671eb7500d06a1f949df0d92086e7\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 89804 3e5dbcf536bc2be0435561b4997c796e\n http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 21380 fce9fff2a5bc990ae97cd67569805789\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 58150 e5a43b39220105101c69480fa63075f5\n http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 50290 1cf2e270243b8f0a6cc56405a8c5bd94\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 80330 fd1073834591fd282edc82e516d7e533\n http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 14380 e00615f5e33b445f214fd1205b1948cb\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 144322 85692c2dcfd49bb0c0e0aad28ccb670c\n http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 61450 c809cd1adf184af7e35e60fa9c9c55e3\n http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_sparc.deb\n Size/MD5: 33858 2bddab9378a2a4e3938ce6ed39dc807e\n\n\n\n. \n\nAffected packages\n=================\n\n -------------------------------------------------------------------\n Package / Vulnerable / Unaffected\n -------------------------------------------------------------------\n 1 net-print/cups \u003c 1.4.8-r1 \u003e= 1.4.8-r1\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in CUPS. Please review\nthe CVE identifiers referenced below for details. \n\nImpact\n======\n\nA remote attacker may be able to execute arbitrary code using specially\ncrafted streams, IPP requests or files, or cause a Denial of Service\n(daemon crash or hang). A local attacker may be able to gain escalated\nprivileges or overwrite arbitrary files. Furthermore, a remote attacker\nmay be able to obtain sensitive information from the CUPS process or\nhijack a CUPS administrator authentication request. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll CUPS users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=net-print/cups-1.4.8-r1\"\n\nNOTE: This is a legacy GLSA. Updates for all affected architectures are\navailable since September 03, 2011. It is likely that your system is\nalready no longer affected by this issue. \n\nReferences\n==========\n\n[ 1 ] CVE-2009-3553\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3553\n[ 2 ] CVE-2010-0302\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0302\n[ 3 ] CVE-2010-0393\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0393\n[ 4 ] CVE-2010-0540\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0540\n[ 5 ] CVE-2010-0542\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0542\n[ 6 ] CVE-2010-1748\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1748\n[ 7 ] CVE-2010-2431\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2431\n[ 8 ] CVE-2010-2432\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2432\n[ 9 ] CVE-2010-2941\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2941\n[ 10 ] CVE-2011-3170\n http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3170\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201207-10.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2012 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2010-0393"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "BID",
"id": "38524"
},
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "PACKETSTORM",
"id": "88415"
},
{
"db": "PACKETSTORM",
"id": "88409"
},
{
"db": "PACKETSTORM",
"id": "88416"
},
{
"db": "PACKETSTORM",
"id": "86902"
},
{
"db": "PACKETSTORM",
"id": "86899"
},
{
"db": "PACKETSTORM",
"id": "86869"
},
{
"db": "PACKETSTORM",
"id": "114577"
}
],
"trust": 2.61
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-42998",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2010-0393",
"trust": 3.4
},
{
"db": "BID",
"id": "38524",
"trust": 2.8
},
{
"db": "SECUNIA",
"id": "38789",
"trust": 0.9
},
{
"db": "VUPEN",
"id": "ADV-2010-0524",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068",
"trust": 0.7
},
{
"db": "NSFOCUS",
"id": "14574",
"trust": 0.6
},
{
"db": "UBUNTU",
"id": "USN-906-1",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "86899",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-42998",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "88415",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "88409",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "88416",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "86902",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "86869",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "114577",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "BID",
"id": "38524"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "PACKETSTORM",
"id": "88415"
},
{
"db": "PACKETSTORM",
"id": "88409"
},
{
"db": "PACKETSTORM",
"id": "88416"
},
{
"db": "PACKETSTORM",
"id": "86902"
},
{
"db": "PACKETSTORM",
"id": "86899"
},
{
"db": "PACKETSTORM",
"id": "86869"
},
{
"db": "PACKETSTORM",
"id": "114577"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"id": "VAR-201003-1114",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
}
],
"trust": 0.01
},
"last_update_date": "2024-07-23T19:39:23.837000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "HT4077",
"trust": 0.8,
"url": "http://support.apple.com/kb/ht4077"
},
{
"title": "HT4077",
"trust": 0.8,
"url": "http://support.apple.com/kb/ht4077?viewlocale=ja_jp"
},
{
"title": "STR #3482",
"trust": 0.8,
"url": "http://www.cups.org/str.php?l3482"
},
{
"title": "TLSA-2010-13",
"trust": 0.8,
"url": "http://www.turbolinux.co.jp/security/2010/tlsa-2010-13j.txt"
},
{
"title": "cups-1.4.4-source.tar",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=230"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-264",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "http://www.securityfocus.com/bid/38524"
},
{
"trust": 1.8,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=558460"
},
{
"trust": 1.8,
"url": "http://www.cups.org/str.php?l3482"
},
{
"trust": 1.7,
"url": "http://www.ubuntu.com/usn/usn-906-1"
},
{
"trust": 1.2,
"url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"
},
{
"trust": 1.1,
"url": "http://lists.apple.com/archives/security-announce/2010//mar/msg00001.html"
},
{
"trust": 1.1,
"url": "http://support.apple.com/kb/ht4077"
},
{
"trust": 1.1,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2010:072"
},
{
"trust": 1.1,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2010:073"
},
{
"trust": 1.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0393"
},
{
"trust": 0.9,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0393"
},
{
"trust": 0.9,
"url": "http://secunia.com/advisories/38789/"
},
{
"trust": 0.8,
"url": "http://www.vupen.com/english/advisories/2010/0524"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0393"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/14574"
},
{
"trust": 0.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2009-3553"
},
{
"trust": 0.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0302"
},
{
"trust": 0.3,
"url": "http://www.cups.org"
},
{
"trust": 0.3,
"url": "http://www.mandriva.com/security/"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2009-2820"
},
{
"trust": 0.3,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2820"
},
{
"trust": 0.3,
"url": "http://www.mandriva.com/security/advisories"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0302"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3553"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/vulnerability_scanning/corporate/wsus_3rd_third_party_patching/"
},
{
"trust": 0.1,
"url": "https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-march/001054.html"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/about_secunia_advisories/"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cupsys-bsd_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-common_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsys2-dev_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsys2_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/faq"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.diff.gz"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cupsys-common_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cupsys-dbg_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cupsys_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cupsys-client_1.3.8-1+lenny8_all.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8.orig.tar.gz"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_mipsel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_armel.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_hppa.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8.dsc"
},
{
"trust": 0.1,
"url": "http://packages.debian.org/\u003cpkg\u003e"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-dbg_1.3.8-1+lenny8_alpha.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcups2-dev_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-bsd_1.3.8-1+lenny8_ia64.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/cups-client_1.3.8-1+lenny8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2-dev_1.3.8-1+lenny8_arm.deb"
},
{
"trust": 0.1,
"url": "http://security.debian.org/pool/updates/main/c/cups/libcupsimage2_1.3.8-1+lenny8_s390.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.dsc"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.diff.gz"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8.dsc"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-client_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.diff.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7.orig.tar.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsddk_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-common_1.3.7-1ubuntu3.8_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/universe/c/cups/cups-ppdc_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.2.2-0ubuntu0.6.06.17_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsys2-dev_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.diff.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsdriver1-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-client_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4.diff.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9.orig.tar.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17.dsc"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.3.7-1ubuntu3.8_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-bsd_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-bsd_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsmime1-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys-dbg_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/libcupsys2_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.4.1.orig.tar.gz"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsmime1_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2-dev_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.dsc"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.2.2-0ubuntu0.6.06.17_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cupsys_1.3.9-2ubuntu9.5_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-2ubuntu9.5.diff.gz"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsimage2-dev_1.3.7-1ubuntu3.8_sparc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2.orig.tar.gz"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-17ubuntu3.6_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1-dev_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupscgi1-dev_1.4.1-5ubuntu2.4_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cupsys/libcupsys2-dev_1.3.7-1ubuntu3.8_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.2.2-0ubuntu0.6.06.17_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.3.7-1ubuntu3.8_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-dbg_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcupsimage2_1.3.9-2ubuntu9.5_i386.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.3.9-17ubuntu3.6_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.2.2-0ubuntu0.6.06.17_amd64.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-common_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsppdc1_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcups2_1.3.9-17ubuntu3.6_powerpc.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/libcups2_1.4.1-5ubuntu2.4_i386.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_sparc.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/libcupsimage2_1.3.9-17ubuntu3.6_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups-bsd_1.4.1-5ubuntu2.4_amd64.deb"
},
{
"trust": 0.1,
"url": "http://ports.ubuntu.com/pool/main/c/cups/cups-client_1.4.1-5ubuntu2.4_lpia.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/universe/c/cups/cupsys-common_1.4.1-5ubuntu2.4_all.deb"
},
{
"trust": 0.1,
"url": "http://security.ubuntu.com/ubuntu/pool/main/c/cups/cups_1.3.9-17ubuntu3.6.dsc"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-1748"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0540"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-3553"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0302"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0542"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1748"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-2431"
},
{
"trust": 0.1,
"url": "http://creativecommons.org/licenses/by-sa/2.5"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3170"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-2431"
},
{
"trust": 0.1,
"url": "http://security.gentoo.org/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-2432"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-2941"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0540"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-2941"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-3170"
},
{
"trust": 0.1,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-2432"
},
{
"trust": 0.1,
"url": "https://bugs.gentoo.org."
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0542"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "BID",
"id": "38524"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "PACKETSTORM",
"id": "88415"
},
{
"db": "PACKETSTORM",
"id": "88409"
},
{
"db": "PACKETSTORM",
"id": "88416"
},
{
"db": "PACKETSTORM",
"id": "86902"
},
{
"db": "PACKETSTORM",
"id": "86899"
},
{
"db": "PACKETSTORM",
"id": "86869"
},
{
"db": "PACKETSTORM",
"id": "114577"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-42998"
},
{
"db": "BID",
"id": "38524"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"db": "PACKETSTORM",
"id": "88415"
},
{
"db": "PACKETSTORM",
"id": "88409"
},
{
"db": "PACKETSTORM",
"id": "88416"
},
{
"db": "PACKETSTORM",
"id": "86902"
},
{
"db": "PACKETSTORM",
"id": "86899"
},
{
"db": "PACKETSTORM",
"id": "86869"
},
{
"db": "PACKETSTORM",
"id": "114577"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2010-03-05T00:00:00",
"db": "VULHUB",
"id": "VHN-42998"
},
{
"date": "2010-03-03T00:00:00",
"db": "BID",
"id": "38524"
},
{
"date": "2010-04-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"date": "2010-04-15T23:53:52",
"db": "PACKETSTORM",
"id": "88415"
},
{
"date": "2010-04-15T23:41:33",
"db": "PACKETSTORM",
"id": "88409"
},
{
"date": "2010-04-15T23:54:31",
"db": "PACKETSTORM",
"id": "88416"
},
{
"date": "2010-03-04T07:37:23",
"db": "PACKETSTORM",
"id": "86902"
},
{
"date": "2010-03-05T03:31:50",
"db": "PACKETSTORM",
"id": "86899"
},
{
"date": "2010-03-03T21:12:43",
"db": "PACKETSTORM",
"id": "86869"
},
{
"date": "2012-07-10T13:46:02",
"db": "PACKETSTORM",
"id": "114577"
},
{
"date": "2010-03-05T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"date": "2010-03-05T19:30:00.470000",
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-05-15T00:00:00",
"db": "VULHUB",
"id": "VHN-42998"
},
{
"date": "2012-07-10T06:20:00",
"db": "BID",
"id": "38524"
},
{
"date": "2010-04-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2010-001247"
},
{
"date": "2010-03-08T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201003-068"
},
{
"date": "2013-05-15T03:06:12.197000",
"db": "NVD",
"id": "CVE-2010-0393"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "38524"
},
{
"db": "PACKETSTORM",
"id": "86902"
},
{
"db": "PACKETSTORM",
"id": "114577"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
}
],
"trust": 1.1
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "CUPS of _cupsGetlang Elevation of privilege vulnerability in functions",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-001247"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "permissions and access control",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201003-068"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…