FrSIRT - Fedora Security Update Fixes CUPS Multiple Remote Vulnerabilities / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes CUPS Multiple Remote Vulnerabilities

Date de Publication : 2007-11-16 © FrSIRT.COM
Titre : Fedora Security Update Fixes CUPS Multiple Remote Vulnerabilities
Identifiant : FrSIRT/AVIS-2007-3879
CVE ID : CVE-2007-4045 - CVE-2007-4352 - CVE-2007-5392 - CVE-2007-5393
Risque : Elevé (3/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Plusieurs vulnérabilités ont été identifiées dans Fedora, elles pourraient être exploitées par des attaquants afin de causer un déni de service ou compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

a45388af589b242f76e7983900e2683ec5f2ffa2 SRPMS/cups-1.2.12-6.fc6.src.rpm
a45388af589b242f76e7983900e2683ec5f2ffa2 noarch/cups-1.2.12-6.fc6.src.rpm
d6dc0e56b7fa779ca39a3c6da4e5ec6688cc710a ppc/cups-1.2.12-6.fc6.ppc.rpm
26ad812abfb87324bf8db8b9acb193eff30096d1 ppc/cups-lpd-1.2.12-6.fc6.ppc.rpm
621f42f6431402fb2ad43063d5035ef85769b9dc ppc/cups-devel-1.2.12-6.fc6.ppc.rpm
ff653ae458b1cd7288b0cae6811095077618cf3f ppc/cups-libs-1.2.12-6.fc6.ppc.rpm
105479acb757753497a00fdccc8de478b73b022d ppc/debug/cups-debuginfo-1.2.12-6.fc6.ppc.rpm
3d9e39b7989f0c857d2965bb048e5ffc5937193a x86_64/cups-1.2.12-6.fc6.x86_64.rpm
e5c2120843a5894ec63c25541ca2ab50f7c934e1 x86_64/cups-lpd-1.2.12-6.fc6.x86_64.rpm
6a58a420784897f4887a0ae726ee11605101a480 x86_64/cups-devel-1.2.12-6.fc6.x86_64.rpm
ded1ff04e6b096ae1120e651b6a15dde2ed04f0b x86_64/debug/cups-debuginfo-1.2.12-6.fc6.x86_64.rpm
077eae49a331c491602b1adf585ed623dc199636 x86_64/cups-libs-1.2.12-6.fc6.x86_64.rpm
5f17138cfd35bdead1ee724fcb67f9262efd4c68 i386/cups-1.2.12-6.fc6.i386.rpm
60e38e2aff2028245735dddaede128b1d5b65d16 i386/cups-lpd-1.2.12-6.fc6.i386.rpm
24d65aa1a8536c388bc0b11e2cb53c8e87f42129 i386/cups-devel-1.2.12-6.fc6.i386.rpm
0e82b568a04687e905eba25488cf26640df2d124 i386/cups-libs-1.2.12-6.fc6.i386.rpm
a53b0d73f89f45d103cc91c204ffe73e32d11129 i386/debug/cups-debuginfo-1.2.12-6.fc6.i386.rpm

Historique

2007-11-16 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation
	Cisco Products SNMPv3 Authentication Packets Vulnerabilities
	Cisco PIX and ASA Security Bypass and Denial of Service

	Oracle Products Multiple Code Execution Vulnerabilities
	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	Sun Solaris System Management Agent Buffer Overflow Vulnerability
	Sun Update Fixes Mozilla Thunderbird Multiple Vulnerabilities
	Sun Java JDK and JRE Code Execution Vulnerabilities
	Sun Solaris DNS Protocol Remote Cache Poisoning Vulnerability
	Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities
	Sun Java System Access Manager XSLT Code Execution Vulnerability
	Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities