Gentoo Bug 249727 - net-print/cups <1.3.9-r1 buffer overflow in _cupsImageReadPNG() (CVE-2008-5286)

Bug List: (This bug is not in your last search results) Show last search results Search page Enter new bug

Bug#:	249727
Alias:
Product:
Component:
Status:	RESOLVED
Resolution:	FIXED
Assigned To:	Gentoo Security <security@gentoo.org>

Hardware:
OS:
Version:
Priority:
Severity:

Reporter:	Stefan Behte <craig@gentoo.org>
Add CC:
CC:	Remove selected CCs

URL:
Summary:
Status Whiteboard:
Keywords:

Flags:			Requestee:
	Pending
	Approved
	Assigned_To		()

Filename	Description	Type	Creator	Created	Size	Actions
Create a New Attachment (proposed patch, testcase, etc.)						View All

Bug 249727 depends on:			Show dependency tree
Bug 249727 blocks:			Show dependency tree

Additional Comments: (this is where you put emerge --info)

Add to CC list

Not eligible to see or edit group visibility for this bug.

Leave as RESOLVED FIXED
Reopen bug
Mark bug as VERIFIED
Mark bug as CLOSED

View Bug Activity | Format For Printing | XML | Clone This Bug

Description:

Opened: 2008-12-03 20:17 0000

CVE-2008-5286 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-5286):
  Integer overflow in the _cupsImageReadPNG function in CUPS 1.1.17
  through 1.3.9 allows remote attackers to execute arbitrary code via a
  PNG image with a large height value, which bypasses a validation
  check and triggers a buffer overflow.

------- Comment #1 From Stefan Behte 2008-12-03 20:23:53 0000 -------

Please apply the patch or bump to 1.3.10 ASAP.

------- Comment #2 From Timo Gurr 2008-12-04 21:45:15 0000 -------

Upstream patch added in net-print/cups-1.3.9-r1.

------- Comment #3 From Stefan Behte 2008-12-06 14:57:50 0000 -------

Arches, please test and mark stable:
=net-print/cups-1.3.9-r1
Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc x86"

------- Comment #4 From Tobias Scherbaum 2008-12-06 19:02:06 0000 -------

ppc stable

------- Comment #5 From Richard Freeman 2008-12-07 04:49:58 0000 -------

amd64 stable

------- Comment #6 From Robert Buchholz 2008-12-07 13:52:15 0000 -------

rerating B1, network connectivity is not default and cups does not run as root,
but lp.

------- Comment #7 From Markus Meier 2008-12-08 18:46:46 0000 -------

x86 stable

------- Comment #8 From Brent Baude 2008-12-08 19:33:40 0000 -------

ppc64 done

------- Comment #9 From Jeroen Roovers 2008-12-09 02:08:43 0000 -------

Stable for HPPA.

------- Comment #10 From Friedrich Oslage 2008-12-09 19:24:18 0000 -------

sparc stable

------- Comment #11 From Raúl Porcel 2008-12-10 10:23:21 0000 -------

arm/ia64 stable

------- Comment #12 From Tobias Klausmann 2008-12-11 16:46:31 0000 -------

Stable on alpha.

------- Comment #13 From Pierre-Yves Rofes 2008-12-11 16:54:31 0000 -------

GLSA 200812-11 (apologies to Gentoo alpha users which got an unstable 1.3.9-r1
for a few hours after the advisory was sent)

Bug List: (This bug is not in your last search results) Show last search results Search page Enter new bug

Bugzilla Bug 249727

net-print/cups <1.3.9-r1 buffer overflow in _cupsImageReadPNG() (CVE-2008-5286)

Last modified: 2008-12-11 16:54:31 0000