Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer overflow.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | cups | <Â 1.5.0-16 | cups_1.5.0-16_all.deb |
Debian | 11 | all | cups | <Â 1.5.0-16 | cups_1.5.0-16_all.deb |
Debian | 10 | all | cups | <Â 1.5.0-16 | cups_1.5.0-16_all.deb |
Debian | 999 | all | cups | <Â 1.5.0-16 | cups_1.5.0-16_all.deb |
Debian | 13 | all | cups | <Â 1.5.0-16 | cups_1.5.0-16_all.deb |
Debian | 12 | all | cups-filters | <Â 1.0.47-1 | cups-filters_1.0.47-1_all.deb |
Debian | 11 | all | cups-filters | <Â 1.0.47-1 | cups-filters_1.0.47-1_all.deb |
Debian | 10 | all | cups-filters | <Â 1.0.47-1 | cups-filters_1.0.47-1_all.deb |
Debian | 999 | all | cups-filters | <Â 1.0.47-1 | cups-filters_1.0.47-1_all.deb |
Debian | 13 | all | cups-filters | <Â 1.0.47-1 | cups-filters_1.0.47-1_all.deb |