Stay Connected:

ELSA-2010-0755

ELSA-2010-0755 - cups security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2010-10-07

Description



[1:1.1.22-0.rc1.9.32:.10]
- Applied small fix to CVE-2009-0791 change: allow objSize=0 in
gmallocCn() if C > 0. As well as being correct, this aids with
testing the fix for CVE-2009-3609.

[1:1.1.22-0.rc1.9.32:.9]
- Back-ported upstream patch to fix integer overflow in pdftops
ImageStream (CVE-2009-3609, bug #526893).

[1:1.1.22-0.rc1.9.32:.7]
- Applied upstream patch to fix uninitialized Gfx::parser pointer
dereference (CVE-2010-3702, bug #595245).


Related CVEs


CVE-2009-3609
CVE-2010-3702

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 4 (i386) cups-1.1.22-0.rc1.9.32.el4_8.10.src.rpme6aa54670b62476a7f01f63bb3148608-
cups-1.1.22-0.rc1.9.32.el4_8.10.i386.rpm461ae1aae95a49a0ed196b0a185639fa-
cups-devel-1.1.22-0.rc1.9.32.el4_8.10.i386.rpme88a2333e1791636f30bac409d154212-
cups-libs-1.1.22-0.rc1.9.32.el4_8.10.i386.rpmaef6a5ce8029e276ee8105673790f983-
Oracle Linux 4 (ia64) cups-1.1.22-0.rc1.9.32.el4_8.10.src.rpme6aa54670b62476a7f01f63bb3148608-
cups-1.1.22-0.rc1.9.32.el4_8.10.ia64.rpm7468672cc4126ded5b3eb1e6f0f968e9-
cups-devel-1.1.22-0.rc1.9.32.el4_8.10.ia64.rpm56929c7de2408b0af478f8787543780b-
cups-libs-1.1.22-0.rc1.9.32.el4_8.10.i386.rpmaef6a5ce8029e276ee8105673790f983-
cups-libs-1.1.22-0.rc1.9.32.el4_8.10.ia64.rpm25953e73fb5146fd3280b8eff570b8ff-
Oracle Linux 4 (x86_64) cups-1.1.22-0.rc1.9.32.el4_8.10.src.rpme6aa54670b62476a7f01f63bb3148608-
cups-1.1.22-0.rc1.9.32.el4_8.10.x86_64.rpm71122f2de3a6cb086b4eae088da0be98-
cups-devel-1.1.22-0.rc1.9.32.el4_8.10.x86_64.rpmdb8c50b4aab3e2b11bb2aa0640f2697b-
cups-libs-1.1.22-0.rc1.9.32.el4_8.10.i386.rpmaef6a5ce8029e276ee8105673790f983-
cups-libs-1.1.22-0.rc1.9.32.el4_8.10.x86_64.rpm1b571bc1d359444be339b5fe1f422036-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights