[ubuntu/lucid-updates] cups 1.4.3-1ubuntu1.10 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Mar 12 12:28:35 UTC 2014

cups (1.4.3-1ubuntu1.10) lucid-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
    - debian/local/filters/pdf-filters/pdftoopvp/{oprs/OPVPSplash.cxx,
      OPVPOutputDev.cxx}: use gmallocn and gmallocn3.
    - backported from 1.0.47 release
    - CVE-2013-6474
    - CVE-2013-6475
  * SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
    - debian/local/filters/pdf-filters/pdftoopvp/oprs/OPVPWrapper.cxx:
      restrict driver path.
    - backported from 1.0.47 release
    - CVE-2013-6476

Date: 2014-03-11 15:33:13.274663+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Lucid-changes mailing list