Red Hat Local Security Checks : RedHat Security Advisory RHSA-2008:1029

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.62934

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2008:1029

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2008:1029.

The Common UNIXÂ® Printing System (CUPS) provides a portable printing layer
for UNIX operating systems.

A null pointer dereference flaw was found in the way CUPS handled
subscriptions for printing job completion notifications. A local user could
use this flaw to crash the CUPS daemon by submitting a large number of
printing jobs requiring mail notification on completion, leading to a
denial of service. (CVE-2008-5183)

Users of cups should upgrade to these updated packages, which contain a
backported patch to correct this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2008-1029.html
http://www.redhat.com/security/updates/classification/#moderate

Risk factor : Medium

CVSS Score:
4.3

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-5183
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
BugTraq ID: 32419
http://www.securityfocus.com/bid/32419
Debian Security Information: DSA-2176 (Google Search)
http://www.debian.org/security/2011/dsa-2176
https://www.exploit-db.com/exploits/7150
http://www.mandriva.com/security/advisories?name=MDVSA-2009:028
http://lab.gnucitizen.org/projects/cups-0day
http://www.gnucitizen.org/blog/pwning-ubuntu-via-cups/
http://www.openwall.com/lists/oss-security/2008/11/19/3
http://www.openwall.com/lists/oss-security/2008/11/19/4
http://www.openwall.com/lists/oss-security/2008/11/20/1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10586
http://www.redhat.com/support/errata/RHSA-2008-1029.html
http://www.securitytracker.com/id?1021396
http://secunia.com/advisories/33937
http://secunia.com/advisories/43521
SuSE Security Announcement: SUSE-SR:2008:026 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html
http://www.vupen.com/english/advisories/2009/0422
http://www.vupen.com/english/advisories/2011/0535
XForce ISS Database: cups-rss-dos(46684)
https://exchange.xforce.ibmcloud.com/vulnerabilities/46684

Copyright Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.62934
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2008:1029
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2008:1029. The Common UNIXÂ® Printing System (CUPS) provides a portable printing layer for UNIX operating systems. A null pointer dereference flaw was found in the way CUPS handled subscriptions for printing job completion notifications. A local user could use this flaw to crash the CUPS daemon by submitting a large number of printing jobs requiring mail notification on completion, leading to a denial of service. (CVE-2008-5183) Users of cups should upgrade to these updated packages, which contain a backported patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2008-1029.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : Medium CVSS Score: 4.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5183 http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html BugTraq ID: 32419 http://www.securityfocus.com/bid/32419 Debian Security Information: DSA-2176 (Google Search) http://www.debian.org/security/2011/dsa-2176 https://www.exploit-db.com/exploits/7150 http://www.mandriva.com/security/advisories?name=MDVSA-2009:028 http://lab.gnucitizen.org/projects/cups-0day http://www.gnucitizen.org/blog/pwning-ubuntu-via-cups/ http://www.openwall.com/lists/oss-security/2008/11/19/3 http://www.openwall.com/lists/oss-security/2008/11/19/4 http://www.openwall.com/lists/oss-security/2008/11/20/1 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10586 http://www.redhat.com/support/errata/RHSA-2008-1029.html http://www.securitytracker.com/id?1021396 http://secunia.com/advisories/33937 http://secunia.com/advisories/43521 SuSE Security Announcement: SUSE-SR:2008:026 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html http://www.vupen.com/english/advisories/2009/0422 http://www.vupen.com/english/advisories/2011/0535 XForce ISS Database: cups-rss-dos(46684) https://exchange.xforce.ibmcloud.com/vulnerabilities/46684
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com