rPSA-2008-0091-1 cups

To: security-announce@xxxxxxxxxxxxxxx, update-announce@xxxxxxxxxxxxxxx
Subject: rPSA-2008-0091-1 cups
From: rPath Update Announcements <announce-noreply@xxxxxxxxx>
Date: Fri, 29 Feb 2008 13:43:21 -0500
Cc: full-disclosure@xxxxxxxxxxxxxxxxx, vulnwatch@xxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, lwn@xxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: nail 11.22 3/20/05

rPath Security Advisory: 2008-0091-1
Published: 2008-02-29
Products:
    rPath Linux 1

Rating: Severe
Exposure Level Classification:
    Remote Deterministic Denial of Service
Updated Versions:
    cups=conary.rpath.com@rpl:1/1.1.23-14.6-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2283

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0596
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0597

Description:
    Previous versions of the cups package are vulnerable to multiple Denial
    of Service attacks in which remote attackers can crash the cups server
    by sending it malicious IPP packets or an excessive number of certain
    types of IPP requests.

http://wiki.rpath.com/Advisories:rPSA-2008-0091

Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Prev by Date: netOffice Dwins 1.3 Remote code execution.
Next by Date: rPSA-2008-0092-1 tshark wireshark
Previous by thread: Re: netOffice Dwins 1.3 Remote code execution.
Next by thread: rPSA-2008-0092-1 tshark wireshark
Index(es):
- Date
- Thread