[ubuntu/lucid-security] cups 1.4.3-1ubuntu1.10 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed Mar 12 11:49:01 UTC 2014


cups (1.4.3-1ubuntu1.10) lucid-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
    - debian/local/filters/pdf-filters/pdftoopvp/{oprs/OPVPSplash.cxx,
      OPVPOutputDev.cxx}: use gmallocn and gmallocn3.
    - backported from 1.0.47 release
    - CVE-2013-6474
    - CVE-2013-6475
  * SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
    - debian/local/filters/pdf-filters/pdftoopvp/oprs/OPVPWrapper.cxx:
      restrict driver path.
    - backported from 1.0.47 release
    - CVE-2013-6476

Date: 2014-03-11 15:33:13.274663+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/cups/1.4.3-1ubuntu1.10
-------------- next part --------------
Sorry, changesfile not available.


More information about the Lucid-changes mailing list