2801 matches found
CVE-2009-0577
Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux RHEL 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for...
CVE-2009-0577
CVE-2009-0577 arises from an integer overflow in the PostScript conversion tool within CUPS when processing a crafted PostScript file, triggering a heap-based buffer overflow in the texttops WriteProlog path. Affected: CUPS 1.1.17 on Red Hat Enterprise Linux 3 (RHEL3). Impact per sources: remote ...
PT-2009-3224 · Apple · Cups
Name of the Vulnerable Software and Affected Versions: CUPS version 1.1.17 Description: The issue is caused by an integer overflow in the WriteProlog function in texttops, which can be exploited by remote attackers to execute arbitrary code. This is achieved by sending a crafted PostScript file...
cups-CVE-2008-3640.patch has been corrupted.
Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux RHEL 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for...
Fedora Update for enscript FEDORA-2008-9372
Check for the Version of enscript OpenVAS Vulnerability Test Fedora Update for enscript FEDORA-2008-9372 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for enscript FEDORA-2008-9351
Check for the Version of enscript OpenVAS Vulnerability Test Fedora Update for enscript FEDORA-2008-9351 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for ghostscript FEDORA-2008-1998
Check for the Version of ghostscript OpenVAS Vulnerability Test Fedora Update for ghostscript FEDORA-2008-1998 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Fedora Update for ghostscript FEDORA-2008-2084
Check for the Version of ghostscript OpenVAS Vulnerability Test Fedora Update for ghostscript FEDORA-2008-2084 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
netatalk shell characters vulnerabilities
Shell characters vulnerability on PostScript print jobs processing...
[SECURITY] [DSA 1704-2] Updated netatalk packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 1704-2 [email protected] http://www.debian.org/security/ Nico Golde January 30th, 2009 http://www.debian.org/security/faq -...
[SECURITY] Fedora 9 Update: dia-0.96.1-7.fc9
The Dia drawing program is designed to be like the WindowsTM Visio program. Dia can be used to draw different types of diagrams, and includes support for UML static structure diagrams class diagrams, entity relationship modeling, and network diagrams. Dia can load and save diagrams to a custom fi...
[SECURITY] Fedora 10 Update: dia-0.96.1-9.fc10
The Dia drawing program is designed to be like the WindowsTM Visio program. Dia can be used to draw different types of diagrams, and includes support for UML static structure diagrams class diagrams, entity relationship modeling, and network diagrams. Dia can load and save diagrams to a custom fi...
DSA-1705-1 netatalk - arbitrary code execution
Bulletin has no description...
CUPS cupsd RSS订阅空指针引用本地拒绝服务漏洞
BUGTRAQ ID: 32419 CVECAN ID: CVE-2008-5183 Common Unix Printing System(CUPS)是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 如果向默认监听于631/tcp端口的CUPS守护程序(/usr/sbin/cupsd)添加了多于100个RSS订阅的话,就会触发空指针引用,导致守护程序崩溃。 Easy Software Products CUPS 1.3.8 RedHat ------...
DEBIAN-CVE-2008-5078
Multiple buffer overflows in the 1 recognizeepsfile function src/psgen.c and 2 tildesubst function src/util.c in GNU enscript 1.6.1, and possibly earlier, might allow remote attackers to execute arbitrary code via an epsf escape sequence with a long filename...
RHEL 5 : enscript (RHSA-2008:1016)
An updated enscript packages that fixes several security issues is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GNU enscript converts ASCII files to PostScriptR language files and spools the...
enscript: "epsf" special escape buffer overflows
Multiple buffer overflows in the 1 recognizeepsfile function src/psgen.c and 2 tildesubst function src/util.c in GNU enscript 1.6.1, and possibly earlier, might allow remote attackers to execute arbitrary code via an epsf escape sequence with a long filename...
Moderate: Red Hat Security Advisory: enscript security update
An updated enscript packages that fixes several security issues is now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GNU enscript converts ASCII files to PostScriptR language files and...
CUPS PNG过滤器_cupsImageReadPNG()函数整数溢出漏洞
BUGTRAQ ID: 32518 Common Unix Printing System(CUPS)是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 CUPS PNG过滤器的cupsImageReadPNG函数中执行了以下计算: bufsize = img-xsize img-ysize 3; if bufsize / img-ysize 3 != img-xsize fprintfstderr, "DEBUG: PNG image dimensions %ux%u too...
[SECURITY] Fedora 9 Update: enscript-1.6.4-10.fc9
GNU enscript is a free replacement for Adobe's Enscript program. Enscript converts ASCII files to PostScriptTM and spools generated PostScript output to the specified printer or saves it to a file. Enscript can be extended to handle different output media and includes many options for customizing...