Computer Security
[EN] securityvulns.ru no-pyccku


CUPS DoS
Published:04.06.2009
Source:
SecurityVulns ID:9962
Type:remote
Threat Level:
5/10
Description:NULL pointer dereference on IPP_TAG_UNSUPPORTED tag parsing.
Affected:CUPS : cups 1.1
 CUPS : cups 1.3
CVE:CVE-2009-0949 (The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1810-1] New cups/cupsys packages fix denial of service (04.06.2009)
 documentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2009-0420 - Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability (04.06.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod