Open Source Forge - www.osforge.com [ SuSE Security Announcement: cups (SuSE-SA:2002:005) ]

Root
Contribute News
Learning Corner
Linux Distributions
Linux Common FAQ's
Discussion Forums
Community Gallery
Links Directory
Search OSForge

Networking
Industry Updates
Linux & Open Source
Opinions
Press Release
Programming
Security
Web Development
White Paper

Likewise Software Receives Ready for IBM Tivoli Validation

Plat'Home Unveils Final Results of “Will Linux Work?” Contest

Zenoss Announces Record Quarterly Customer Growth amid Struggling Economy

Latest Open-Xchange Server Edition Simplifies Integration, Easily Customizable

Cluster Resources Works With IBM to Provide Moab Hybrid Cluster on iDataPlex

Cluster Resources to Deomonstrate Moab Hybrid Cluster on Windows HPC Server 2008

Cluster Resources to Provide Moab Hybrid Cluster Solution on New Cray CX1(TM)

Plat'Home Unveils Winners of “Will Linux Work?” Contest

Zenoss Core Recognized as Best Open Source Network Monitoring Solution

View More �

SuSE Security Announcement: cups (SuSE-SA:2002:005)

By : Eric Lim [www]

on Security
Monday the 25th, February 2002 at 07:59 PM (EST)

Readers TalkBack (0) - 919 Reads
Viewing Page 1 of 3

Printable format
Foward to Email

SuSE Security Announcement
Package: cups
Announcement-ID: SuSE-SA:2002:005
Date: Saturday, Feb 23st 2002 09:10 MET
Affected SuSE versions: 7.1, 7.2, 7.3
Vulnerability Type: remote privilege escalation
Severity (1-10): 5
SuSE default package: no
Other affected systems: all systems running CUPS
Content of this advisory:
1) security vulnerability resolved: CUPS bufferoverflow in IPP problem description, discussion, solution and upgrade informatation
2) pending vulnerabilities, solutions, workarounds
3) standard appendix (further information)

1) problem description, brief discussion, solution, upgrade information

    The well known Common Unix Printing System (CUPS) was found vulnerable
    to a buffer overflow in the Internet Printing Protocol (IPP) handling
    code.
    The buffer overflow could be exploited by a remote attacker as long as
    their IP address is allowed to connect to the CUPS server.

    Please download the update package for your distribution and verify its
    integrity by the methods listed in section 3) of this announcement.
    Then, install the package using the command "rpm -Fhv file.rpm" to apply
    the update.

    After updateing the packages run "rclpd restart" as root to start the
    new daemon.

    i386 Intel Platform:

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/i386/update/7.3/n1/cups-1.1.10-81.i386.rpm
      bfb52a55305ac12880b5e59410205a6e
    source rpm:
    ftp://ftp.suse.com/pub/suse/i386/update/7.3/zq1/cups-1.1.10-81.src.rpm
      e3d276cb505eaa1bf35946b5c1029562

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/i386/update/7.3/n1/cups-client-1.1.10-81.i386.rpm
      527eeb095abeb0ee0cad95f028a8222b

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/i386/update/7.3/n1/cups-libs-1.1.10-81.i386.rpm
      9a125db90716f71b4fa31cf2ba4180a8

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/i386/update/7.3/d3/cups-devel-1.1.10-81.i386.rpm
      d8457f2c62e7a85e927b615570efa82b

    SuSE-7.2
    ftp://ftp.suse.com/pub/suse/i386/update/7.2/n1/cups-1.1.6-103.i386.rpm
      9a6c6b3fcd1dea6504121b76de1615b5
    source rpm:
    ftp://ftp.suse.com/pub/suse/i386/update/7.2/zq1/cups-1.1.6-103.src.rpm
      92c0fc63d6b9c6c299583868f69ac649

    SuSE-7.2
    ftp://ftp.suse.com/pub/suse/i386/update/7.2/d3/cups-devel-1.1.6-103.i386.rpm
      a0ed0a207040b6aa6b8080d7e146ce04

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/cups-1.1.6-102.i386.rpm
      488317348075ae50f0d5f5bd9e82b247
    source rpm:
    ftp://ftp.suse.com/pub/suse/i386/update/7.1/zq1/cups-1.1.6-102.src.rpm
      54f3b1bcb3cc727dfcf05514d84c402d

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/i386/update/7.1/d3/cups-devel-1.1.6-102.i386.rpm
      6019620534415dd4d09681583ee627a1

    Sparc Platform:

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/sparc/update/7.3/n1/cups-1.1.10-34.sparc.rpm
      7777fb032e1c2b45956db2d3ccf9b3c3
    source rpm:
    ftp://ftp.suse.com/pub/suse/sparc/update/7.3/zq1/cups-1.1.10-34.src.rpm
      91684561da7f476055c71239b61c549b

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/sparc/update/7.3/n1/cups-client-1.1.10-34.sparc.rpm
      8badff242e1903d7f812bafb0e6a1831

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/sparc/update/7.3/n1/cups-libs-1.1.10-34.sparc.rpm
      355221f9ca9c435a24251915b3384ea2

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/sparc/update/7.3/d3/cups-devel-1.1.10-34.sparc.rpm
      60daf45ca8a75237421c8abd27c9f433

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/sparc/update/7.1/n2/cups-1.1.6-37.sparc.rpm
      063b7953d50ad4b4958541bfaccd270c
    source rpm:
    ftp://ftp.suse.com/pub/suse/sparc/update/7.1/zq1/cups-1.1.6-37.src.rpm
      d5d5e4bf719ab2eca49cadc9708e0ff3

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/sparc/update/7.1/d3/cups-devel-1.1.6-37.sparc.rpm
      2cbd702f7d978a098ce9c84e3b1cc7ff



    AXP Alpha Platform:

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/axp/update/7.1/n2/cups-1.1.6-33.alpha.rpm
      7188e40aac0c097095c2df088a93265d
    source rpm:
    ftp://ftp.suse.com/pub/suse/axp/update/7.1/zq1/cups-1.1.6-33.src.rpm
      ac122fe5b1305bab6a8c5904699d4bd5

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/axp/update/7.1/d3/cups-devel-1.1.6-33.alpha.rpm
      ae6685e65e7db1b9afe276d51d6da51a

    PPC PowerPC Platform:

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/ppc/update/7.3/n1/cups-1.1.10-60.ppc.rpm
      99aa8fcf0f21d5799931953c90435d72
    source rpm:
    ftp://ftp.suse.com/pub/suse/ppc/update/7.3/zq1/cups-1.1.10-60.src.rpm
      6e0b6c9e04eb7167b3585aebbc0deb29

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/ppc/update/7.3/n1/cups-client-1.1.10-60.ppc.rpm
      61f807924b16930166d711c1da8a4cc0

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/ppc/update/7.3/n1/cups-libs-1.1.10-60.ppc.rpm
      090132d0ae790027382c88a9b331fa9e

    SuSE-7.3
    ftp://ftp.suse.com/pub/suse/ppc/update/7.3/d3/cups-devel-1.1.10-60.ppc.rpm
      f211da7b5dc400c8e087a6ef8178afd5

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/ppc/update/7.1/n2/cups-1.1.6-47.ppc.rpm
      52c247f3cbf4836dacec7a767a4fe3c7
    source rpm:
    ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/cups-1.1.6-47.src.rpm
      1937730cf78b1c658b430e9525084a93

    SuSE-7.1
    ftp://ftp.suse.com/pub/suse/ppc/update/7.1/d3/cups-devel-1.1.6-47.ppc.rpm
      c906d4106d30f1e84133e8d45a857b2d

Next Page (2 of 3)

Reader Rating from 1-5

Talkback

Post Your Talkback | View All Talkback (0 Posted)

Currently there are no Talkback posted on "SuSE Security Announcement: cups (SuSE-SA:2002:005)", Click here to be the first to post a talkback.


About \| Term of Use \| Privacy \| Contact us \| Tell a Friend \| Advertise	OSForge News RSS Feed