Lucene search

Gentoo FoundationMGASA-2014-0181

HistoryApr 18, 2014 - 12:30 a.m.

Updated cups-filters packages fix security vulnerability

2014-04-1800:30:08

Gentoo Foundation

advisories.mageia.org

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

54.1%

JSON

Updated cups-filters packages fix security vulnerability: Sebastian Krahmer discovered it was possible to use malicious broadcast packets to execute arbitrary commands on a server running the cups- browsed daemon (CVE-2014-2707). Note that only systems that have enabled the affected feature by using the CreateIPPPrinterQueues configuration directive in /etc/cups/cups- browsed.conf are affected.

OSVersionArchitecturePackageVersionFilename
Mageia4noarchcups-filters< 1.0.41-3.4cups-filters-1.0.41-3.4.mga4

OS	Version	Architecture	Package	Version	Filename
Mageia	4	noarch	cups-filters	< 1.0.41-3.4	cups-filters-1.0.41-3.4.mga4

References

bugs.mageia.org/show_bug.cgi?id=13216

lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

54.1%

JSON

Related for MGASA-2014-0181