Ubuntu Update For Cupsys Vulnerability USN-606-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-606-1

Solution

Please Install the Updated Packages.

Insight

Thomas Pollet discovered that CUPS did not properly validate the size of PNG images. A local attacker, and a remote attacker if printer sharing is enabled, could send a crafted file and cause a denial of service or possibly execute arbitrary code as the non-root user in Ubuntu 6.06 LTS and 7.04. In Ubuntu 7.10, attackers would be isolated by the AppArmor CUPS profile. (CVE-2008-1722)

Affected

cupsys vulnerability on Ubuntu 6.06 LTS , Ubuntu 7.04 , Ubuntu 7.10

Severity

Classification

CVE CVE-2008-1722
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for colord USN-1289-1
Ubuntu Update for curl USN-2097-1
Ubuntu Update for dbus USN-1576-1
Ubuntu Update for aptdaemon USN-1666-1
Ubuntu Update for avahi vulnerability USN-402-1

Ubuntu Update for cupsys vulnerability USN-606-1

Take action and discover your vulnerabilities