Lucene search
This script is Copyright (C) 2005-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2005-878.NASLHistoryDec 30, 2005 - 12:00 a.m.
RHEL 3 / 4 : cups (RHSA-2005:878)
2005-12-3000:00:00
This script is Copyright (C) 2005-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
23
Updated CUPS packages that fix multiple security issues are now available for Red Hat Enterprise Linux.
This update has been rated as having important security impact by the Red Hat Security Response Team.
The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX® operating systems.
Several flaws were discovered in the way CUPS processes PDF files. An attacker could construct a carefully crafted PDF file that could cause CUPS to crash or possibly execute arbitrary code when opened. The Common Vulnerabilities and Exposures project assigned the names CVE-2005-3191, CVE-2005-3192, and CVE-2005-3193 to these issues.
All users of CUPS should upgrade to these updated packages, which contain backported patches to resolve these issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2005:878. The text
# itself is copyright (C) Red Hat, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(20365);
script_version("1.24");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2005-3191", "CVE-2005-3192", "CVE-2005-3193", "CVE-2005-3628");
script_bugtraq_id(15721, 15725, 15726, 15727);
script_xref(name:"RHSA", value:"2005:878");
script_name(english:"RHEL 3 / 4 : cups (RHSA-2005:878)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated CUPS packages that fix multiple security issues are now
available for Red Hat Enterprise Linux.
This update has been rated as having important security impact by the
Red Hat Security Response Team.
The Common UNIX Printing System (CUPS) provides a portable printing
layer for UNIX(R) operating systems.
Several flaws were discovered in the way CUPS processes PDF files. An
attacker could construct a carefully crafted PDF file that could cause
CUPS to crash or possibly execute arbitrary code when opened. The
Common Vulnerabilities and Exposures project assigned the names
CVE-2005-3191, CVE-2005-3192, and CVE-2005-3193 to these issues.
All users of CUPS should upgrade to these updated packages, which
contain backported patches to resolve these issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2005-3191"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2005-3192"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2005-3193"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2005-3628"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2005:878"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected cups, cups-devel and / or cups-libs packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:cups");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:cups-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:cups-libs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:4");
script_set_attribute(attribute:"vuln_publication_date", value:"2005/12/06");
script_set_attribute(attribute:"patch_publication_date", value:"2005/12/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2005/12/30");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2005-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^(3|4)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 3.x / 4.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2005:878";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL3", reference:"cups-1.1.17-13.3.34")) flag++;
if (rpm_check(release:"RHEL3", reference:"cups-devel-1.1.17-13.3.34")) flag++;
if (rpm_check(release:"RHEL3", reference:"cups-libs-1.1.17-13.3.34")) flag++;
if (rpm_check(release:"RHEL4", reference:"cups-1.1.22-0.rc1.9.9")) flag++;
if (rpm_check(release:"RHEL4", reference:"cups-devel-1.1.22-0.rc1.9.9")) flag++;
if (rpm_check(release:"RHEL4", reference:"cups-libs-1.1.22-0.rc1.9.9")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "cups / cups-devel / cups-libs");
}
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | cups | p-cpe:/a:redhat:enterprise_linux:cups |
| redhat | enterprise_linux | cups-devel | p-cpe:/a:redhat:enterprise_linux:cups-devel |
| redhat | enterprise_linux | cups-libs | p-cpe:/a:redhat:enterprise_linux:cups-libs |
| redhat | enterprise_linux | 3 | cpe:/o:redhat:enterprise_linux:3 |
| redhat | enterprise_linux | 4 | cpe:/o:redhat:enterprise_linux:4 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3192
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3628
access.redhat.com/errata/RHSA-2005:878
access.redhat.com/security/cve/cve-2005-3191
access.redhat.com/security/cve/cve-2005-3192
access.redhat.com/security/cve/cve-2005-3193
access.redhat.com/security/cve/cve-2005-3628
Related
nessus
nessus
RHEL 4 : gpdf (RHSA-2005:867)
2005-12-30 00:00:00
CentOS 4 : gpdf (CESA-2005:867)
2006-07-05 00:00:00
CentOS 3 / 4 : cups (CESA-2005:878)
2006-07-03 00:00:00
redhat
redhat
(RHSA-2005:867) gpdf security update
2005-12-20 00:00:00
(RHSA-2005:878) cups security update
2005-12-20 00:00:00
(RHSA-2005:840) xpdf security update
2005-12-06 00:00:00
centos
centos
gpdf security update
2005-12-21 02:51:50
cups security update
2005-12-20 23:29:16
tetex security update
2006-01-19 21:19:14
openvas
openvas
Gentoo Security Advisory GLSA 200512-08 (xpdf, gpdf, poppler, cups)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200512-08 (xpdf, gpdf, poppler,cups)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200603-02 (tetex)
2008-09-24 00:00:00
gentoo
gentoo
Xpdf, GPdf, CUPS, Poppler: Multiple vulnerabilities
2005-12-16 00:00:00
KPdf, KWord: Multiple overflows in included Xpdf code
2006-01-04 00:00:00
teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code
2006-03-04 00:00:00
ubuntu
ubuntu
xpdf vulnerabilities
2005-12-12 00:00:00
debian
debian
suse
suse
remote code execution in xpdf,kpdf,gpdf,kword
2006-01-11 12:03:37
osv
osv
xpdf - buffer overflows
2006-01-09 00:00:00
kdegraphics - buffer overflows
2006-01-09 00:00:00
pdftohtml - buffer overflows
2006-02-01 00:00:00
securityvulns
securityvulns
slackware
slackware
[slackware-security] xpdf
2006-02-15 00:28:51
[slackware-security] kdegraphics
2006-02-15 00:27:14
[slackware-security] tetex PDF security
2006-05-22 22:14:23
ubuntucve
ubuntucve
altlinux
altlinux
Security fix for the ALT Linux 5 package xpdf version 3.01-alt3
2006-01-13 00:00:00
Security fix for the ALT Linux 5 package xpdf version 3.01-alt2pl1
2005-12-07 00:00:00
debiancve
debiancve
cve
cve
prion
prion
Design/Logic Flaw
2006-03-15 19:06:00
oraclelinux
oraclelinux
kdegraphics security update
2006-11-30 00:00:00
Related for REDHAT-RHSA-2005-878.NASL