Debian Security Advisory DSA 1656-1 (cupsys)

Auto-generated from advisory DSA 1656-1 (cupsys). Several local vulnerabilities discovered in Common UNIX Printing System. Insufficient bounds checking in SGI image filter, Postscript conversion tool, and HPGL filter may lead to execution of arbitrary code. Problems have been fixed in version 1.2.7-4etch5 for stable distribution (etch) and version 1.3.8-1lenny2 for unstable distribution (sid) and upcoming stable distribution (lenny)

Reporter	Title	Published	Views	Family All 137
Tenable Nessus	CUPS < 1.3.9 Multiple Vulnerabilities	13 Oct 200800:00	–	nessus
Tenable Nessus	CentOS 3 / 4 / 5 : cups (CESA-2008:0937)	10 Oct 200800:00	–	nessus
Tenable Nessus	CentOS 3 / 4 : cups (CESA-2009:0308)	20 Feb 200900:00	–	nessus
Tenable Nessus	CUPS < 1.3.9 Multiple Vulnerabilities	10 Oct 200800:00	–	nessus
Tenable Nessus	Debian DSA-1656-1 : cupsys - several vulnerabilities	21 Oct 200800:00	–	nessus
Tenable Nessus	Fedora 8 : cups-1.3.9-1.fc8 (2008-8801)	16 Oct 200800:00	–	nessus
Tenable Nessus	Fedora 9 : cups-1.3.9-1.fc9 (2008-8844)	16 Oct 200800:00	–	nessus
Tenable Nessus	FreeBSD : cups -- multiple vulnerabilities (ce29ce1d-971a-11dd-ab7e-001c2514716c)	13 Oct 200800:00	–	nessus
Tenable Nessus	GLSA-200812-11 : CUPS: Multiple vulnerabilities	11 Dec 200800:00	–	nessus
Tenable Nessus	Mac OS X Multiple Vulnerabilities (Security Update 2008-007)	10 Oct 200800:00	–	nessus

# OpenVAS Vulnerability Test
# $Id: deb_1656_1.nasl 6616 2017-07-07 12:10:49Z cfischer $
# Description: Auto-generated from advisory DSA 1656-1 (cupsys)
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

include("revisions-lib.inc");
tag_insight = "Several local vulnerabilities have been discovered in the Common UNIX
Printing System. The Common Vulnerabilities and Exposures project
identifies the following problems:

CVE-2008-3639

It was discovered that insufficient bounds checking in the SGI
image filter may lead to the execution of arbitrary code.

CVE-2008-3640

It was discovered that an integer overflow in the Postscript
conversion tool texttops may lead to the execution of arbitrary
code.

CVE-2008-3641

It was discovered that insufficient bounds checking in the HPGL
filter may lead to the execution of arbitrary code.

For the stable distribution (etch), these problems have been fixed in
version 1.2.7-4etch5.

For the unstable distribution (sid) and the upcoming stable distribution
(lenny), these problems have been fixed in version 1.3.8-1lenny2 of
the source package cups.

We recommend that you upgrade your cupsys package.";
tag_summary = "The remote host is missing an update to cupsys
announced via advisory DSA 1656-1.";

tag_solution = "https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201656-1";


if(description)
{
 script_id(61778);
 script_version("$Revision: 6616 $");
 script_tag(name:"last_modification", value:"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $");
 script_tag(name:"creation_date", value:"2008-11-01 01:55:10 +0100 (Sat, 01 Nov 2008)");
 script_cve_id("CVE-2008-3639", "CVE-2008-3640", "CVE-2008-3641");
 script_tag(name:"cvss_base", value:"10.0");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_name("Debian Security Advisory DSA 1656-1 (cupsys)");



 script_category(ACT_GATHER_INFO);

 script_copyright("Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com");
 script_family("Debian Local Security Checks");
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages");
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "insight" , value : tag_insight);
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

#
# The script code starts here
#

include("pkg-lib-deb.inc");

res = "";
report = "";
if ((res = isdpkgvuln(pkg:"cupsys-common", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libcupsys2-gnutls10", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"cupsys-bsd", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"cupsys-dbg", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"cupsys-client", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"cupsys", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libcupsimage2", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libcupsys2", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.2.7-4etch5", rls:"DEB4.0")) != NULL) {
    report += res;
}

if (report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

07 Jul 2017 00:00Current

0.2Low risk

Vulners AI Score0.2

EPSS0.51274