French Security Incident Response Team

FrSIRT   

      

   français French  anglais English

 
Vulnerability Notification Service
 FrSIRT Partner Program
 14-Day Free Trial
Contact FrSIRT Sales Dept.
 

Security Advisories
Linux Security Advisories
Virus and Threats Advisories
Latest Security News
Latest Zero Day Threats
Advisories and vulnerabilities by Vendor
Advisories and vulnerabilities by Keyword
 

Report a security incident
Report a new vulnerability
Security Mailinglist
 

Our Company
FrSIRT in the News
Advertise on FrSIRT.COM
Security Researchers and Exploit Writers Jobs
Contact Us

Fedora Security Update Fixes CUPS Multiple Remote Vulnerabilities

Title : Fedora Security Update Fixes CUPS Multiple Remote Vulnerabilities
Advisory ID : FrSIRT/ADV-2007-3828
CVE ID : CVE-2007-4045 - CVE-2007-4352 - CVE-2007-5392 - CVE-2007-5393
Rated as : High Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-11-12

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive FrSIRT alerts in a Text format  Receive FrSIRT alerts in a PDF format  Receive FrSIRT alerts in an XML format  Receive FrSIRT notifications by SMS 

Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system [...]

Solution

Upgrade the affected packages :

e0b6ddf1f64bc55861a4c7e7d8750d3ae4022a22 cups-debuginfo-1.2.12-7.fc7.ppc64.rpm
d5933da4154a0ef82a7976bcf43bea3626926a08 cups-lpd-1.2.12-7.fc7.ppc64.rpm
5e7ae92bcbe2943f4597ec871bf244be170f1840 cups-libs-1.2.12-7.fc7.ppc64.rpm
4943c7f5c8d433a92f32e7cbc82325802f041e5b cups-1.2.12-7.fc7.ppc64.rpm
46a30896d2a82320a6f9166bd4f670367d2a761d cups-devel-1.2.12-7.fc7.ppc64.rpm
71df8ed89025b65ddbf9af50c8419b9abd32664f cups-1.2.12-7.fc7.i386.rpm
f27677c3460e9fe5b558d8bab7f5ef72001c9e14 cups-libs-1.2.12-7.fc7.i386.rpm
0d44cd1e566fea486726710d48b1745d5155cae4 cups-debuginfo-1.2.12-7.fc7.i386.rpm
b911ee6c056ebca7be080d80930e25f6c89a7fda cups-devel-1.2.12-7.fc7.i386.rpm
991b6e3206a689f17ce03136e4ca933f9dafc3e0 cups-lpd-1.2.12-7.fc7.i386.rpm
f0c3ef122f5b396501bf9abac5b913fd7526a34a cups-1.2.12-7.fc7.x86_64.rpm
0864d55d0eab42d4fc0a881e820a3da37b62be33 cups-lpd-1.2.12-7.fc7.x86_64.rpm
d848e4eeb9ee488e8219a26708750637015652b9 cups-devel-1.2.12-7.fc7.x86_64.rpm
504469b9dc56a42241b9aa5f07f3bfc1f7387ba4 cups-debuginfo-1.2.12-7.fc7.x86_64.rpm
0e03a675de4adb8ba4cf57b6e505c3addb7284c6 cups-libs-1.2.12-7.fc7.x86_64.rpm
1ec1eea5b5ab2b65411eab28437ded3626e59e52 cups-debuginfo-1.2.12-7.fc7.ppc.rpm
381bf8abcc9af034f3a93ba55d9954f3e4953b9c cups-libs-1.2.12-7.fc7.ppc.rpm
989139479ede1327c6dc9523169c7ee443b51da2 cups-1.2.12-7.fc7.ppc.rpm
2388a46fe015fa67918ef9af6fbd749da91e6546 cups-devel-1.2.12-7.fc7.ppc.rpm
f08c7c3783948b16ffad6d115a97953280b33211 cups-lpd-1.2.12-7.fc7.ppc.rpm
c0cbea01f2ed07f50f9176b7b04b5a37f3b4af9a cups-1.2.12-7.fc7.src.rpm

ChangeLog

2007-11-12 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
 
 

Search
      

Mailinglist
    
 

Microsoft SQL Server Privilege Escalation Vulnerabilities (MS08-040)

Microsoft Exchange Server Cross Site Scripting Issues (MS08-039)

Microsoft Windows Explorer Remote Code Execution (MS08-038)

Microsoft Windows Multiple DNS Spoofing Vulnerabilities (MS08-037)

Microsoft Access Snapshot Viewer ActiveX Control Vulnerability

Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability

Microsoft Internet Explorer "location" Cross-Domain Scripting Issue

Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities

Sun Java System Access Manager XSLT Code Execution Vulnerability

Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities

Sun Solaris "snmpXdmid" Packet Handling Denial of Service Vulnerability

Sun Solaris FreeType2 Library Multiple Memory Corruption Vulnerabilities

Sun Java System Calendar Server Denial of Service Vulnerability

Sun Solaris SMA SNMPv3 Authentication Bypass Vulnerability

Mozilla Products Remote Code Execution and Security Bypass Issues

Mozilla Firefox Unspecified Remote Command Execution Vulnerability

Mozilla JavaScript Garbage Collector Code Execution Vulnerability

Mozilla Thunderbird Code Execution and Cross Site Scripting Issues

Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues

Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues

Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues

Copyright 2003-2008 © FrSIRT.COM - Privacy Policy