Debian Security Advisory DSA-3172-1 [email protected]
http://www.debian.org/security/ Sebastien Delafond
February 25, 2015 http://www.debian.org/security/faq
Package : cups
CVE ID : CVE-2014-9679
Debian Bug : 778387
Peter De Wachter discovered that CUPS, the Common UNIX Printing
System, did not correctly parse compressed raster files. By submitting
a specially crafted raster file, a remote attacker could use this
vulnerability to trigger a buffer overflow.
For the stable distribution (wheezy), this problem has been fixed in
version 1.5.3-5+deb7u5.
For the upcoming stable distribution (jessie) and unstable
distribution (sid), this problem has been fixed in version 1.7.5-11.
We recommend that you upgrade your cups packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 6 | amd64 | libcupscgi1-dev | < 1.4.4-7+squeeze7 | libcupscgi1-dev_1.4.4-7+squeeze7_amd64.deb |
Debian | 7 | ia64 | libcupsppdc1 | < 1.5.3-5+deb7u5 | libcupsppdc1_1.5.3-5+deb7u5_ia64.deb |
Debian | 7 | s390 | cups-ppdc | < 1.5.3-5+deb7u5 | cups-ppdc_1.5.3-5+deb7u5_s390.deb |
Debian | 7 | mips | libcupscgi1-dev | < 1.5.3-5+deb7u5 | libcupscgi1-dev_1.5.3-5+deb7u5_mips.deb |
Debian | 6 | i386 | libcupsmime1-dev | < 1.4.4-7+squeeze7 | libcupsmime1-dev_1.4.4-7+squeeze7_i386.deb |
Debian | 7 | sparc | libcups2 | < 1.5.3-5+deb7u5 | libcups2_1.5.3-5+deb7u5_sparc.deb |
Debian | 7 | i386 | libcupscgi1-dev | < 1.5.3-5+deb7u5 | libcupscgi1-dev_1.5.3-5+deb7u5_i386.deb |
Debian | 7 | mips | libcupsmime1-dev | < 1.5.3-5+deb7u5 | libcupsmime1-dev_1.5.3-5+deb7u5_mips.deb |
Debian | 7 | mips | cups | < 1.5.3-5+deb7u5 | cups_1.5.3-5+deb7u5_mips.deb |
Debian | 7 | powerpc | libcupsmime1-dev | < 1.5.3-5+deb7u5 | libcupsmime1-dev_1.5.3-5+deb7u5_powerpc.deb |